From: James <wireless@tampabay.rr.com>
To: gentoo-user@lists.gentoo.org
Subject: [gentoo-user] Re: Simplified apache2
Date: Thu, 14 Sep 2006 02:41:57 +0000 (UTC) [thread overview]
Message-ID: <loom.20060914T043140-148@post.gmane.org> (raw)
In-Reply-To: 45084B2F.40908@comcast.net
Brian Davis <bridavis <at> comcast.net> writes:
> Can one covert a non-hardended machine to use the hardended-profile, or
> do you have to start from scratch?
Hello Brian,
The short answer is YES. The correct answer is you have to
read quite a lot (I'm in the middle of that) and decide
which 'path/technology' you want to follow. Here's docs
you should start looking at:
http://www.gentoo.org/proj/en/hardened/primer.xml
http://www.gentoo.org/proj/en/hardened/
I choose 'SElinux' as the path to follow for me
that makes most sense. Since the NSA was the prime
motivator, it's an easy path to convince my clients
to follow. Although SElinux is not a complete
solution, other complementary software combined with
SElinux does provide for a complete (security) solution,
almost.....
http://www.gentoo.org/proj/en/hardened/selinux/
http://www.gentoo.org/proj/en/hardened/selinux/selinux-handbook.xml
http://www.gentoo.org/proj/en/hardened/selinux/selinux-handbook.xml?part=2
hth,
http://www.gentoo.org/proj/en/hardened/selinux/selinux-handbook.xml?part=2
James
--
gentoo-user@gentoo.org mailing list
next prev parent reply other threads:[~2006-09-14 2:51 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-09-12 13:40 [gentoo-user] Simplified apache2 James
2006-09-12 15:08 ` Michael Crute
2006-09-12 15:36 ` [gentoo-user] " James
2006-09-12 23:27 ` [gentoo-user] " Ryan Tandy
2006-09-13 12:36 ` [gentoo-user] " James
2006-09-13 13:20 ` Rumen Yotov
2006-09-14 17:05 ` Brian Davis
2006-09-14 21:49 ` Brian Davis
2006-09-13 13:50 ` Michael Crute
2006-09-13 17:01 ` Bo Ørsted Andresen
2006-09-13 17:52 ` Stefan G. Weichinger
2006-09-13 18:08 ` Neil Bothwick
2006-09-13 19:13 ` Daniel da Veiga
2006-09-13 21:11 ` Harm Geerts
2006-09-13 5:07 ` [gentoo-user] " Michael Stewart (vericgar)
2006-09-13 13:45 ` Michael Crute
2006-09-15 0:17 ` Michael Stewart (vericgar)
2006-09-13 18:17 ` Brian Davis
2006-09-14 2:41 ` James [this message]
-- strict thread matches above, loose matches on Subject: below --
2006-09-14 2:51 [gentoo-user] " bridavis
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=loom.20060914T043140-148@post.gmane.org \
--to=wireless@tampabay.rr.com \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox