Login | Register For Free | Help	Search this list this category for: (Advanced)

Mailing List Archive: Gentoo: Hardened Re: New Server, considering hardened, need pointers to tfm...   Index | Next | Previous | View Flat

matthew.finkel at gmail Dec 11, 2011, 3:00 PM Views: 516 Permalink Re: New Server, considering hardened, need pointers to tfm... [In reply to] On Sun, Dec 11, 2011 at 3:30 PM, Kevin Chadwick <ma1l1ists [at] yahoo>wrote: > On Sun, 11 Dec 2011 10:18:51 +0000 > Sven Vermeulen wrote: > > > Also consider hardening your system settings-wise. I would appreciate if > you > > take a look at > > http://dev.gentoo.org/~swift/docs/previews/oval/gentoo-xccdf-guide.html. > > With the instructions given, you can even have your system validated (as > far > > as possible) automatically. > > I was expecting to find here what one distro uses which is binary > signature checking upon execution. > > Another thing that I try to do as a better method of TPE which is a > breeze on OpenBSD and sometimes I find myself working against Linux > developers¹ is to make it so that any writeable area of the filesystem > is mounted noexec and mounts have the least priviledges required. > If don't mind my asking, what is it that OpenBSD does differently than the Linux distros that make it so much easier? Do they actually follow the security practices you mentioned in the bug report? > > ¹ "https://bugs.launchpad.net/ubuntu/+source/udisks/+bug/880965" > set as won't fix and also e.g. apt-get expecting /tmp exec. > > Thanks, Matt -- Matthew Finkel

Subject User Time New Server, considering hardened, need pointers to tfm... tanstaafl at libertytrek Dec 10, 2011, 12:17 PM     Re: New Server, considering hardened, need pointers to tfm... prometheanfire at gentoo Dec 10, 2011, 12:52 PM         Re: New Server, considering hardened, need pointers to tfm... swift at gentoo Dec 11, 2011, 2:18 AM             Re: New Server, considering hardened, need pointers to tfm... powerman at powerman Dec 11, 2011, 4:20 AM                 Re: New Server, considering hardened, need pointers to tfm... swift at gentoo Dec 11, 2011, 6:25 AM                     Re: New Server, considering hardened, need pointers to tfm... powerman at powerman Dec 11, 2011, 6:53 AM                         Re: New Server, considering hardened, need pointers to tfm... prometheanfire at gentoo Dec 11, 2011, 8:49 AM                         Re: New Server, considering hardened, need pointers to tfm... hilco.wijbenga at gmail Dec 11, 2011, 12:01 PM                         Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 11, 2011, 12:08 PM                             Re: New Server, considering hardened, need pointers to tfm... blueness at gentoo Dec 12, 2011, 3:56 AM                                 Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 12, 2011, 5:38 AM                                     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 12, 2011, 6:08 AM                                         Re: New Server, considering hardened, need pointers to tfm... tazok.id0 at gmail Dec 12, 2011, 7:23 AM                         Re: New Server, considering hardened, need pointers to tfm... pva at gentoo Dec 13, 2011, 7:18 PM                         Re: New Server, considering hardened, need pointers to tfm... pva at gentoo Dec 13, 2011, 7:31 PM             Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 11, 2011, 12:30 PM                 Re: New Server, considering hardened, need pointers to tfm... matthew.finkel at gmail Dec 11, 2011, 3:00 PM                 Re: New Server, considering hardened, need pointers to tfm... basile at opensource Dec 12, 2011, 3:59 AM                     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 12, 2011, 5:14 AM     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 12, 2011, 3:34 AM     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 12, 2011, 8:44 AM         Re: New Server, considering hardened, need pointers to tfm... tazok.id0 at gmail Dec 12, 2011, 9:38 AM     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 12, 2011, 10:41 AM         Re: New Server, considering hardened, need pointers to tfm... tazok.id0 at gmail Dec 12, 2011, 11:44 AM     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 12, 2011, 12:19 PM         Re: New Server, considering hardened, need pointers to tfm... tazok.id0 at gmail Dec 12, 2011, 1:04 PM     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 12, 2011, 2:08 PM         Re: New Server, considering hardened, need pointers to tfm... tazok.id0 at gmail Dec 13, 2011, 1:20 PM     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 14, 2011, 3:05 AM         Re: New Server, considering hardened, need pointers to tfm... tazok.id0 at gmail Dec 14, 2011, 7:27 AM     Re: New Server, considering hardened, need pointers to tfm... powerman at powerman Dec 14, 2011, 7:55 AM         Re: New Server, considering hardened, need pointers to tfm... tazok.id0 at gmail Dec 14, 2011, 8:28 AM     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 14, 2011, 8:42 AM         Re: New Server, considering hardened, need pointers to tfm... tazok.id0 at gmail Dec 14, 2011, 10:06 AM     Re: New Server, considering hardened, need pointers to tfm... ma1l1ists at yahoo Dec 14, 2011, 11:45 AM

Index | Next | Previous | View Flat   Gentoo     Alpha     AMD64     Announce     Desktop     Dev     Doc     Embedded     GWN     Hardened     HPPA     MIPS     OSX     Performance     PPC-Dev     PPC-User     Security     SPARC     User

Interested in having your list archived? Contact Gossamer Threads
 

Web Applications & Managed Hosting Powered by Gossamer Threads Inc.