El 26/12/20 a las 10:20, Ulrich Mueller escribió:
This would apply retroactively since 2018-10-21 (when GLEP 76 was marked
as Active). I am going to file a bug for authors to acknowledge that
their news items can be distributed under CC-BY-SA-4.0.
For all matters the news item I wrote in 2017 c
El 13/7/20 a las 22:07, Francisco Blas Izquierdo Riera (klondike) escribió:
> El 13/7/20 a las 21:27, Michał Górny escribió:
>> On Mon, 2020-07-13 at 19:33 +0200, Francisco Blas Izquierdo Riera
>> (klondike) wrote:
>>> El 13/7/20 a las 19:23, Michał Górny escribió:
>>
El 13/7/20 a las 21:27, Michał Górny escribió:
> On Mon, 2020-07-13 at 19:33 +0200, Francisco Blas Izquierdo Riera
> (klondike) wrote:
>> El 13/7/20 a las 19:23, Michał Górny escribió:
>>> On Mon, 2020-07-13 at 19:07 +0200, Francisco Blas Izquierdo Riera
>>> (klondike
El 13/7/20 a las 19:23, Michał Górny escribió:
> On Mon, 2020-07-13 at 19:07 +0200, Francisco Blas Izquierdo Riera
> (klondike) wrote:
>> Hi!
>>
>> We have currently two packages that have USE cpu-flags-x86-rdrand as there
>> is no USE_EXPAND version available. Thi
Please ignore patches 2 and 3, I missed some USE flag replacements. I'll
resubmit in a second.
El 13/7/20 a las 19:07, Francisco Blas Izquierdo Riera (klondike) escribió:
> Hi!
>
> We have currently two packages that have USE cpu-flags-x86-rdrand as there is
> no USE_EXPAND
Package-Manager: Portage-2.3.99, Repoman-2.3.23
Signed-off-by: Francisco Blas Izquierdo Riera (klondike)
---
dev-libs/json-c/json-c-0.14-r3.ebuild | 4 ++--
dev-libs/json-c/json-c-.ebuild | 4 ++--
dev-libs/json-c/metadata.xml | 3 ---
3 files changed, 4 insertions(+), 7
Package-Manager: Portage-2.3.99, Repoman-2.3.23
Signed-off-by: Francisco Blas Izquierdo Riera (klondike)
---
dev-haskell/cryptonite/cryptonite-0.21.ebuild | 8
dev-haskell/cryptonite/cryptonite-0.26-r1.ebuild | 6 +++---
dev-haskell/cryptonite/metadata.xml | 1 -
3
Notice that this is for cpuflags2cpuid
Signed-off-by: Francisco Blas Izquierdo Riera (klondike)
---
src/x86.c | 1 +
tests/x86/amd-colfax.txt | 2 +-
tests/x86/xeon-e-2176g.txt | 2 +-
tests/x86/xeon-silver-4410.txt | 2 +-
4 files changed, 4 insertions(+), 3
Package-Manager: Portage-2.3.99, Repoman-2.3.23
Signed-off-by: Francisco Blas Izquierdo Riera (klondike)
---
dev-libs/json-c/json-c-0.14-r3.ebuild | 2 +-
dev-libs/json-c/json-c-.ebuild | 2 +-
dev-libs/json-c/metadata.xml | 3 ---
3 files changed, 2 insertions(+), 5 deletions
Package-Manager: Portage-2.3.99, Repoman-2.3.23
Signed-off-by: Francisco Blas Izquierdo Riera (klondike)
---
dev-haskell/cryptonite/cryptonite-0.21.ebuild | 4 ++--
dev-haskell/cryptonite/cryptonite-0.26-r1.ebuild | 2 +-
dev-haskell/cryptonite/metadata.xml | 1 -
3 files changed
Introduce 'rdrand' flag that corresponds to RDRAND instruction.
This currently has two users.
Signed-off-by: Francisco Blas Izquierdo Riera (klondike)
---
profiles/desc/cpu_flags_x86.desc | 1 +
1 file changed, 1 insertion(+)
diff --git a/profiles/desc/cpu_flags_x86.desc b/pro
Hi!
We have currently two packages that have USE cpu-flags-x86-rdrand as there is
no USE_EXPAND version available. This pattern is likely to confuse users as
they may not be aware of the difference between dashes and underscores.
Affected packages:
dev-haskell/cryptonite
dev-libs/json-c
The fo
I do agree with cologic's rationale on this :)
I did avoid mmap for the following reasons:
* My objective was a C implementation that was easy to use everywhere. mmap is
UNIX specific, Windows for example uses a different API
https://docs.microsoft.com/en-us/windows/win32/memory/file-mapping lib
Question #682215 on ADCH++ changed:
https://answers.launchpad.net/adchpp/+question/682215
Status: Expired => Solved
Francisco Blas Izquierdo Riera (klondike) changed the question status:
I mailed laurent some code. Hopefully it can help him kickstart the
development.
--
You received t
Question #682215 on ADCH++ changed:
https://answers.launchpad.net/adchpp/+question/682215
Status: Open => Needs information
Francisco Blas Izquierdo Riera (klondike) requested more information:
Are you familiar with any specific programming language? I used to code
python based ADC bots
El 31/5/19 a las 11:47, Ulrich Mueller escribió:
> Would it be reasonable to use the same schedule as for profiles/updates
> in future, namely to remove everything older than 5 years? Of course,
> that shouldn't stop anyone from removing a news item earlier if it has
> become irrelevant.
Hi Ulric
El 26/3/19 a las 22:15, Ralph Seichter escribió:
> * Francisco Blas Izquierdo Riera:
>
> All of my systems, and a big part of my business, depend on Postfix. I
> don't want to start a tug-of-war, but I have been building and using
> Postfix for roughly ten years now. I'm *certain* I'll do a good jo
El 26/3/19 a las 21:02, Michał Górny escribió:
> mail-filter/opendkim
I'm unsure if anybody feels responsible for this one. Upstream is pretty
silent and made no releases since 2015.
In a modern mail system it is important to be able to sign outgoing
e-mail with DKIM as things like mailing lists
gt;
> 16 Mar 2019 Cts 10:10 PM tarihinde Francisco Blas Izquierdo Riera
> (klondike) mailto:klond...@gentoo.org>> şunu yazdı:
>
> Hi Michał
>
> El 16/3/19 a las 20:06, Michał Górny escribió:
> > # The current Gentoo version of Nessus is from 2006 (!). It
Hi Michał
El 16/3/19 a las 20:06, Michał Górny escribió:
> # The current Gentoo version of Nessus is from 2006 (!). It does
> # not build for quite some time (#590226), also -client fails with new
> # openssl (#674424). Upstream has stopped releasing non-proprietary
> # versions. While at it, r
Hi eMtee,
I coded this little library over the weekend, hopefully it will help :D
https://github.com/klondi/mmdb
--
You received this bug notification because you are a member of
Dcplusplus-team, which is subscribed to DC++.
https://bugs.launchpad.net/bugs/1774502
Title:
Free GeoIP Database F
Question #677391 on ADCH++ changed:
https://answers.launchpad.net/adchpp/+question/677391
Francisco Blas Izquierdo Riera (klondike) posted a new comment:
Hi Derek,
>From my side it's been a really long time since I last played with
ADCH++ but I think I did this before.
If you check the
ed on your next backports build.
I have also submitted the patch to upstream for consideration.
I am using Debian 9.0 and the haproxy package from the stretch-backports.
Yours truly,
Francisco Izquierdo (klondike)
From: Francisco Blas Izquierdo Riera (klondike)
Subject: BUG/MEDIUM ssl: Fix loadi
When using multicertificate bundles (i.e. .rsa, .ecdsa and .dsa files) HAProxy
fails to load certificates at random.
This is caused by an attempt to load the DH parameters from the NULL pointer
instead of the corresponding bundle which leaves an error in the queue.
This patch makes ssl_sock_load_
El 29/06/18 a las 18:33, Peter Humphrey escribió:
> On Thursday, 28 June 2018 22:15:36 BST Francisco Blas Izquierdo Riera
> (klondike) wrote:
>> Hi!
>>
>> I just want to notify that an attacker has taken control of the Gentoo
>> organization in Github and has a
El 29/06/18 a las 17:11, Dale escribió:
> R0b0t1 wrote:
>> I can't help but notice this was moved to gentoo-user. Are posts to
>> gentoo-dev being moderated properly, or should I not bother submitting
>> anything?
>>
>>
> I suspect it was done to let users know about the breach. Otherwise,
> anyon
El 29/06/18 a las 03:55, Duane Robertson escribió:
> On Thu, 28 Jun 2018 23:15:36 +0200
> "Francisco Blas Izquierdo Riera (klondike)" wrote:
>
>> Hi!
>>
>> I just want to notify that an attacker has taken control of the Gentoo
>> organization in Git
El 29/06/18 a las 09:47, Ivan J. escribió:
> On Fri, Jun 29, 2018 at 03:12:15AM +0200, Francisco Blas Izquierdo Riera
> (klondike) wrote:
>> El 29/06/18 a las 00:27, Mick escribió:
>>> On Thursday, 28 June 2018 22:54:45 BST Francisco Blas Izquierdo Riera
>>> (klond
El 29/06/18 a las 00:27, Mick escribió:
> On Thursday, 28 June 2018 22:54:45 BST Francisco Blas Izquierdo Riera
> (klondike) wrote:
>> El 28/06/18 a las 23:15, Francisco Blas Izquierdo Riera (klondike) escribió:
>>> Hi!
>>>
>>> I just want to notify th
El 28/06/18 a las 23:15, Francisco Blas Izquierdo Riera (klondike) escribió:
> Hi!
>
> I just want to notify that an attacker has taken control of the Gentoo
> organization in Github and has among other things replaced the portage
> and musl-dev trees with malicious versions
El 28/06/18 a las 23:15, Francisco Blas Izquierdo Riera (klondike) escribió:
> Hi!
>
> I just want to notify that an attacker has taken control of the Gentoo
> organization in Github and has among other things replaced the portage
> and musl-dev trees with malicious versions
as is and GitHub has now
removed the organization, please don't use any ebuild from the GitHub
mirror ontained before 28/06/2018, 18:00 GMT until new warning.
Sincerely,
Francisco Blas Izquierdo Riera (klondike)
Gentoo developer.
signature.asc
Description: OpenPGP digital signature
as is and GitHub has now
removed the organization, please don't use any ebuild from the GitHub
mirror ontained before 28/06/2018, 18:00 GMT until new warning.
Sincerely,
Francisco Blas Izquierdo Riera (klondike)
Gentoo developer.
signature.asc
Description: OpenPGP digital signature
Hi Michał,
El 15/05/18 a las 08:20, Michał Górny escribió:
> If you are still using Python 3.4, please consider switching to a newer
> version as it is reaching its end-of-life. The end-of-life dates
> for the currently used versions are:
>
> Python 3.42019-03-16
> Python 2.72
Dear Gentoo Council,
During the meeting you held on December (see the logs here:
https://projects.gentoo.org/council/meeting-logs/20171210.txt ), you
voted for restricting the gentoo-dev mailing list. Although in said
meeting somebody raised that such a change affected the Gentoo Social
Contract a
El 24/03/18 a las 04:34, Aaron Bauman escribió:
>
> On March 23, 2018 11:11:16 PM EDT, "Francisco Blas Izquierdo Riera
> (klondike)" wrote:
>> El 20/03/18 a las 09:52, Kristian Fiskerstrand escribió:
>>> This was not put in effect on 23 January 2018, however I h
El 20/03/18 a las 09:52, Kristian Fiskerstrand escribió:
> This was not put in effect on 23 January 2018, however I have now
> requested infra to put it in place in [bug 650964]. Users wishing
> posting permissions are encouraged to find a mentor and register in [bug
> 644070]
>
> References:
> [bu
El 20/08/17 a las 00:44, Michał Górny escribió:
> W dniu sob, 19.08.2017 o godzinie 22∶15 +, użytkownik Duncan
> napisał:
>> Aaron W. Swenson posted on Sat, 19 Aug 2017 07:18:20 -0400 as excerpted:
>>
>> [Proposed news item excerpt]
>>
>>> We'd like to note that all the userspace hardening and
El 19/08/17 a las 13:18, Aaron W. Swenson escribió:
> On 2017-08-19 13:01, Francisco Blas Izquierdo Riera (klondike) wrote:
>> El 19/08/17 a las 12:37, Aaron W. Swenson escribió:
>>> On 2017-08-15 17:01, Francisco Blas Izquierdo Riera (klondike) wrote:
>>>> Hi!
>
El 19/08/17 a las 12:37, Aaron W. Swenson escribió:
> On 2017-08-15 17:01, Francisco Blas Izquierdo Riera (klondike) wrote:
>> Hi!
>>
>> I'd like to get this one up by Saturday so that we can proceed with
>> masking and removing of the hardened-sources after u
to gentoo-hardened which is the porject's
mailing list.
El 18/08/17 a las 02:59, R0b0t1 escribió:
> On Tue, Aug 15, 2017 at 3:03 PM, Francisco Blas Izquierdo Riera
> (klondike) wrote:
>> El 15/08/17 a las 17:50, R0b0t1 escribió:
>>> Where was this decision discussed?
>
to gentoo-hardened which is the porject's
mailing list.
El 18/08/17 a las 02:59, R0b0t1 escribió:
> On Tue, Aug 15, 2017 at 3:03 PM, Francisco Blas Izquierdo Riera
> (klondike) wrote:
>> El 15/08/17 a las 17:50, R0b0t1 escribió:
>>> Where was this decision discussed?
>
El 16/08/17 a las 18:01, Duncan escribió:
> Francisco Blas Izquierdo Riera (klondike) posted on Wed, 16 Aug 2017
> 12:09:57 +0200 as excerpted:
>
>> s you may know the core of sys-kernel/hardened-sources have been the
>> grsecuirty patches.
> New typo: s/grsecuirty/grsecuri
El 16/08/17 a las 15:36, Robert Sharp escribió:
> On 16/08/17 11:09, Francisco Blas Izquierdo Riera (klondike) wrote:
>> El 16/08/17 a las 09:40, Marek Szuba escribió:
>>> Two tiny bits of formal nitpicking from my side:
>>> - it's "grsecurity" (not a t
El 16/08/17 a las 09:40, Marek Szuba escribió:
> Two tiny bits of formal nitpicking from my side:
> - it's "grsecurity" (not a typo, they do use a lowercase g except when
> the name appears at the beginning of a sentence), not "grsec";
> - the patches were not *distributed by* grsecurity, they *a
El 16/08/17 a las 09:40, Marek Szuba escribió:
> Two tiny bits of formal nitpicking from my side:
> - it's "grsecurity" (not a typo, they do use a lowercase g except when
> the name appears at the beginning of a sentence), not "grsec";
> - the patches were not *distributed by* grsecurity, they *a
El 15/08/17 a las 18:08, Ulrich Mueller escribió:
>>>>>> On Tue, 15 Aug 2017, Francisco Blas Izquierdo Riera (klondike) wrote:
>> Updated the news item following comments from dilfridge, mrueg and
>> floppym. Also made it display to users of hardened profil
El 15/08/17 a las 18:08, Ulrich Mueller escribió:
>>>>>> On Tue, 15 Aug 2017, Francisco Blas Izquierdo Riera (klondike) wrote:
>> Updated the news item following comments from dilfridge, mrueg and
>> floppym. Also made it display to users of hardened profil
El 15/08/17 a las 17:50, R0b0t1 escribió:
> Where was this decision discussed?
https://archives.gentoo.org/gentoo-hardened/message/62ebc2e26d91e8f079197c2c83788cff
And many other threads in that list for example, those are just blueness
(the package maintainer) conclussions.
> The last available k
El 15/08/17 a las 17:01, Francisco Blas Izquierdo Riera (klondike) escribió:
> Hi!
>
> I'd like to get this one up by Saturday so that we can proceed with
> masking and removing of the hardened-sources after upstream stopped
> releasing new patches.
>
> This is my first
El 15/08/17 a las 17:01, Francisco Blas Izquierdo Riera (klondike) escribió:
> Hi!
>
> I'd like to get this one up by Saturday so that we can proceed with
> masking and removing of the hardened-sources after upstream stopped
> releasing new patches.
>
> This is my first
For those of you wondering about the future of hardened-sources. They
will be removed in a bit more than a month.
Input regarding the news item is more than welcome.
Title: sys-kernel/hardened-sources removal
Author: Francisco Blas Izquierdo Riera (klondike)
Posted: 2017-08-19
Revision: 1
News
early inform users as to
the options available for hardening their system kernels after the
removal of the hardened-sources.
Sincerely,
Klondike
Title: sys-kernel/hardened-sources removal
Author: Francisco Blas Izquierdo Riera (klondike)
Posted: 2017-08-19
Revision: 1
News-Item-Format: 2.0
Displ
El 23/06/17 a las 18:28, Anthony G. Basile escribió:
> Hi everyone,
>
> Since late April, grsecurity upstream has stop making their patches
> available publicly. Without going into details, the reason for their
> decision revolves around disputes about how their patches were being
> (ab)used.
>
>
Executive summary
With Gentoo Hardened no ebuilds compiled with a hardened toolchain with
version 4.8 or higher should be affected by this issue as
-fstack-check=specific is enabled by default. The only known exceptions
are media-video/vlc and (on HPPA) dev-lang/tcl wich disable this feature.
In
El 21/06/17 a las 01:02, "Tóth Attila" escribió:
> https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
> The advisory suggests:
> 1. Increase the size of the stack guard-page to at least 1MB
> - I skip this point
> 2. Recompile all userland code with GCC's "-fstack-check" option
> - I che
New question #632353 on ADCH++:
https://answers.launchpad.net/adchpp/+question/632353
Lua 5.1.5 has been avilable for quite some time already and is stable on
Gentoo. It'd be nice if we could upgrade the embedded version and update the
required system lua to the new version.
--
You received th
o
provide more and better input on this.
Sincerely,
Francisco Blas Izquierdo Riera (klondike)
signature.asc
Description: OpenPGP digital signature
o
>> INITRAMFS_COMPRESSION_LZ4 Compress using lz4
>>
>> These depend on the corresponding CONFIG_RD_* option being set (except NONE
>> which has no dependencies).
> As you sent them, these patches would be merged with
>
> From: klondike
> Signed-off-b
Hi,
Although I'm all in for the cool new crypto I'd like to recommend
waiting a bit (say 3 months) before releasing a client with the new
OpenSSL version.
My point is mostly based on OpenSSL's history itself, last time a major
update happened: https://www.openssl.org/news/changelog.html#x9 and
h
Hi guys, I have been reading this and I'm a bit confused regarding the port
mappers and IPv6. In case it helps here is my knowledge about it:
* UPnP has a draft for IPv6
https://tools.ietf.org/html/draft-bnss-v6ops-upnp-01 To my knowledge UPnP is
the most extended solution for this task but I do
El 19/02/16 a las 21:30, Alexander Tsoy escribió:
> В Fri, 19 Feb 2016 21:19:37 +0100
> Gandalf пишет:
>
>> Doing an update on my server today marked an update of the
>> hardened-sources. However, it was labelled 4.1.7 vs my installed version
>> 4.3.3. What is up? Is it recommended to downgrade
El 02/09/15 a las 18:13, Anthony G. Basile escribió:
> Hi everyone,
>
> So by now most people have heard the news that the Grsecurity/PaX team
> are no longer going to be making their stable patches available. The
> reason is that they are in dispute with a certain embedded systems
> vendor and th
El 09/08/15 a las 12:02, Mike Frysinger escribió:
> On 09 Aug 2015 11:31, Marc Schiffbauer wrote:
>> * Michael Weber schrieb am 09.08.15 um 11:00 Uhr:
>>> On 08/09/2015 07:36 AM, Robin H. Johnson wrote:
I'm only 90% sure that everything works, but I've spent almost the
entire day on it,
poy, since the info is already public and has been made public at http
://te-home.net/?id=54&title=Second+largest+exploit+in+NMDC+history
¿shall we keep it private?
--
You received this bug notification because you are a member of
Dcplusplus-team, which is subscribed to DC++.
https://bugs.launchp
Public bug reported:
Lua 5.1.5 has been avilable for quite some time already and is stable on
Gentoo. It'd be nice if we could upgrade the embedded version and update
the required system lua to the new version.
** Affects: adchpp
Importance: Wishlist
Status: Confirmed
--
You recei
I have had a commit around for this for some time on my branch but I
can't remind why I didn't forward it. In case it helps it's at
http://bazaar.launchpad.net/~klondike/adchpp/adchpp/revision/662
--
You received this bug notification because you are a member of
Dcplusplus-team, which is subscrib
El 14/10/14 13:58, Eric Blake escribió:
> Thanks for the report. Yes, we should fix mdate-sh to output results
> in UTC, if it is easy to write portable shell to normalize dates (with
> GNU date it is easy, but mdate-sh has to run on systems that lack GNU
> date).
Well the suggested workaround for
The output of mdate-sh depends on the local timezone used by the system
which may trigger unneeded rebuilds in some situations (especially when
the packaging machine and the building machine are on different timezones).
An example of such an issue can be found at
https://bugs.gentoo.org/show_bug.c
Something that came just out of my head, couldn't we use the URI
parameters as we do with the kp to implement this restriction?
--
You received this bug notification because you are a member of
Dcplusplus-team, which is subscribed to DC++.
https://bugs.launchpad.net/bugs/1308290
Title:
Requir
Hi!
El 29/03/14 05:13, Samuli Suominen escribió:
> I took the liberty to unbreak the tree for you. Don't ever touch my
> packages again unless
> they are broken.
Udev is broken:
* They have known off by one string handling errors on their libraries,
the developers were warned of that but have chos
Well there is EiskaltDC++ and the beta the guys at ApexDC are doing. So
it's not such a bad world :P
--
You received this bug notification because you are a member of
Dcplusplus-team, which is subscribed to DC++.
https://bugs.launchpad.net/bugs/1297688
Title:
Moving away from Win API to Multip
El 30/09/13 00:47, Volker Armin Hemmann escribió:
> Am 29.09.2013 18:41, schrieb Francisco Blas Izquierdo Riera (klondike):
>> El 29/09/13 18:03, Volker Armin Hemmann escribió:
>>> Am 29.09.2013 17:12, schrieb Greg Woodbury:
>>>> On 09/29/2013 07:58
El 29/09/13 18:03, Volker Armin Hemmann escribió:
> Am 29.09.2013 17:12, schrieb Greg Woodbury:
>> On 09/29/2013 07:58 AM, Volker Armin Hemmann wrote:
>>
>>> things were broken way before that. As much as I hate systemd, it is not
>>> the root cause of the problem.
>>>
>>> The problems were caused
El 28/08/13 20:44, klondike escribió:
> For those of you who prefer google calendar stuff:
> https://www.google.com/calendar/event?action=TEMPLATE&tmeid=NTdjaHZoZTc3NWJ2dnBmNmY2aDg5MmY3cjAgZnJhbnhpc2NvMTk4OEBt&tmsrc=franxisco1988%40gmail.com
>
> Attached is also astandard ical invitation.
Idiot me
El 23/08/13 22:05, Matthew Thode escribió:
> On 08/23/2013 12:57 PM, Sven Vermeulen wrote:
>> Hi guys
>>
>> The Gentoo Wiki is almost ready to host project pages. All documents on our
>> location are ready (converted in my home space into wiki format) and should
>> be easy to transfer within a few
El 24/06/13 19:10, Sven Vermeulen escribió:
> On Mon, Jun 24, 2013 at 12:04:04PM +0100, Markos Chandras wrote:
>> I like the idea. It might help bring developers and users closer.
> Me too, if I can ever contribute to it, or help users with their Gentoo
> (Hardened/SELinux/IMA/EVM/...) through it,
El 28/01/13 22:59, "Tóth Attila" escribió:
> hardened/linux/amd64/x32/ ?
> http://lwn.net/Articles/500482/ says gcc-4.7 is a requirement.
> Anybody using hardened x32? How mature it is? Does it copes well with PaX?
Just don't, IIRC 4.7.1 is still not supported.
signature.asc
Description: OpenPGP
Just to make things clear (replace $ARCH by your architecture)
1) We are going to create a test version of the 13.0 base profiles with
hardened of the next profiles currently using 10.0. These will also be
replaced by the 13.0 version after a testing period.
hardened/linux/$ARCH
hardened/linux/$AR
El 24/12/12 03:16, Alex Efros escribió:
> Hi!
>
> Please take a look at
> http://serverfault.com/questions/460429/clone2-30-sec-delay-in-apache
>
> I didn't think it may be related to hardened but I've just found this in
> kernel logs:
>
> 2012-12-23_20:45:19.15938 kern.alert: grsec: From 75.101.17
El 21/12/12 22:05, Grant escribió:
> It turns out the extra choices are due to this patch:
> https://github.com/init6/init_6/blob/master/sys-kernel/geek-sources/files/3.7.1/fix/kernel-37-gcc47-1.patch
> I'm sorry to have bothered the hardened list with this. - Grant
Actually looks like a quite int
El 09/12/12 17:06, Sebastian Pipping escribió:
> Hello Haydania-Capri,
>
>
> On 06.12.2012 03:09, Haydania-Capri Hummel wrote:
>> Hi;
>>
>> I've very interested in become a member of the public relations team and
>> was wondering if anyone would be willing to mentor me in regards to
>> becoming a d
El 18/11/12 04:39, Greg KH escribió:
> Anyway, I now see a _very_ dangerous commit in the "Copyright" branch
> that better not get merged into the tree, as it's wrong, and illegal
> under all countries that follow the "normal" body of Copyright Law. It
> should be removed right now before someone
Hi folks!
As you may know last year we gave a talk at FOSDEM about the security
features of our project, which you can check at
http://video.fosdem.org/2012/crossdistro/Introduction_to_hardening,_the_Gentoo_Hardened_approach.webm
In general FOSDEM requires us to speak about development related st
El 03/11/12 14:35, Anthony G. Basile escribió:
> Hi everyone,
>
> I'd like to announce a new subproject of Hardened Gentoo: Hardened
> uClibc. It is an effort to port both tool chain and kernel hardening
> to uClibc based systems for a variety of architectures, treating
> uClibc more as a drop in
So I have been doing some bash scripting out of some comment in a
conversation to count (and rank) the packages by the number of ebuilds
they have (and thus of versions of said package). The results can be
seen at http://dev.gentoo.org/~klondike/ebuildrank.txt and if there is
interest I can try to
El 22/08/12 20:19, Sven Vermeulen escribió:
> On Tue, Aug 21, 2012 at 03:06:38AM +0200, Francisco Blas Izquierdo Riera
> (klondike) wrote:
>>> Hi
>>> Time for meeting.
>>>
>>> Agenda
>>> 1.0 Project leads
>>> 2.0 Toolchain
>>>
0
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
CREATED;TZID=Europe/Stockholm:20120821T025547
LAST-MODIFIED:20120821T005824Z
DTSTAMP:20120821T005824Z
UID:6118b544-e261-4562-a063-cd40fca14bc4
SUMMARY:Gentoo Hardened Meeting
STATUS:CONFIRMED
ORGANIZER;RSVP=FALSE;CN=Francisco Blas Izquierdo Riera (klondike);C
El 17/08/12 19:06, Grant escribió:
> Interesting, I would have thought Gentoo would keep hardened-sources
> in sync with upstream's recommendation/support.
There are a few reasons for that not being the case but of them I'd go
for the fact that in order to get stabilished a package must have been
o
El 27/06/12 09:19, Alex Efros escribió:
> Safe, but don't working. Do you enable ipv6 USE flag just to force people
> to either disable unintentionally enabled IPv6 in kernel and/or add this
> ip6tables configuration?
No, we do it because otherwise the stage3 is unusable on ipv6 only
environments a
El 27/06/12 04:38, Alecks Gates escribió:
> On Tue, Jun 26, 2012 at 8:48 PM, Francisco Blas Izquierdo Riera
> (klondike) wrote:
>> Hello,
>>
>> First sorry for taking this long to answer this, somehow this mail
>> slipped through my radar and couldn't find
Hello,
First sorry for taking this long to answer this, somehow this mail
slipped through my radar and couldn't find it when somebody moved it to
the gentoo-hardened list, add to that an... interesting live and we are set.
And now let's get answers:
First the Gentoo Hardened team DOES support th
El 26/06/12 09:38, Darknight escribió:
> Enable ipv6 use flag and disable ipv6 in /etc/sysctl.conf?
> - no scary (j/k) ipv6 enabled by default
> - ipv6 enabled in a matter of seconds without need for an internet
> connection
>
> The news item and a word about the sysctl thing in the docs would be
>
El 26/06/12 08:26, Jonny Kent escribió:
>
> On Jun 25, 2012, at 10:43 PM, Michael Orlitzky wrote:
>
>> On 06/25/12 23:03, Alex Efros wrote:
>>> Correct me if I'm wrong, but enabling IPv6 mean needs in supporting two
>>> different routing tables and two different firewalls. Also, I suppose
>>> enab
El 26/06/12 07:43, Michael Orlitzky escribió:
> It's easy enough to set USE="-ipv6" manually of course, but the same
> argument works for USE="ipv6". So, I think the default should be what
> most people want; i.e. what the fewest people will have to override. Do
> most hardened machines use ipv6?
T
El 26/06/12 05:03, Alex Efros escribió:
> Hi!
Hi!
> On Mon, Jun 25, 2012 at 08:58:49AM -0500, Matthew Thode wrote:
>>> I'm alerting users so that you can make whatever changes you like to
>>> ipv6 in your /etc/make.conf. In about 24 hours I will turn on by
>>> default ipv6 on all hardened profiles
El 08/06/12 09:44, Grant escribió:
> I started a discussion on gentoo-user about the fact that the hardened
> profile appears to only be for servers and not desktops. I thought
> I'd check with you guys on this. Is that the case?
I have been using Gentoo on Desktop systems for some time, mainly
b
Open floor
Also, attached to the e-mail you will find an event invitation may you
want to add the meeting time to your calendar so you don't forget about it.
We look forward to see you in the meeting.
Best regards,
Francisco Blas Izquierdo Riera (klondike)
Gentoo Hardened Project Staffer
BEGIN
El 21/04/12 16:55, Vinícius Ferrão escribió:
> Anthony,
>
> All my hardened boxes have Unicode enabled by hand. Everything is fine. I
> can't understand why it is disabled too.
Same here blueness, for me it can go and nobody will notice :D
signature.asc
Description: OpenPGP digital signature
El 12/03/12 17:29, Samuli Suominen escribió:
> # Samuli Suominen (12 Mar 2012)
> # media-sound/lilypond required for this is masked in ../package.mask
> # for removal
> app-text/asciidoc test
>
asciidoc only depends with the test use flag set so why don't just
remove the test USE and the test func
1 - 100 of 156 matches
Mail list logo
