Hi everyone,
There are two issues I want to bounce off the community. Easy one first:
1) We still have the old 10.0 hardened profiles on the tree. They've
been marked deprecated for about two years and I have no idea what state
they're in. I'm going to punt them in a day unless someone gives me a
really good reason to keep them.
2) There are some old hardened-sources kernels. Upstream says, don't
keep them around! Here's the forum post:
http://forums.grsecurity.net/viewtopic.php?t=2980&p=11841#p11841
From now on, I'm going to be keeping only the last two stable kernels
in each of the 2.6.32.x and 3.x branch, ie, when I stabilize a new one,
I'll drop the last stable at the same time. If you report issues in a
timely fashion, that'll keep me from prematurely stabilizing.
FYI, just because an ebuild is off the tree doesn't mean you can't
retrieve it from the dead files on the CVS:
http://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/?hideattic=0
Andhe patchsets that they pull down will forever be available on my dev
overlay at
http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/
I'm just not going to make it easy for you :P
Comments?
--
Anthony G. Basile, Ph. D.
Chair of Information Technology
D'Youville College
Buffalo, NY 14201
(716) 829-8197
