I'm about to set up a new box. It'll run Hardened Gentoo (suprise!) - what else? Beside providing usual services (ssh, mail, etc.), it would also function as a (uhm..) desktop (i know, i know...). I'm hesitating between Grsec and SELinux. I'm already quite familiar with Grsec, but I have just some limited knowledge and experience on SELinux. IMHO, a regular desktop system should also have effective security features enforced nowdays. Has anybody running xorg on an SELinux box (i know, i know)?
Are there any working policies for, or has anybody ever sucessfully used the following list of deamons?sendmail dovecot (cyrus-imapd?) spamd clamd BTW, which MTA suit would you recommend to use with SELinux? Should I stick to my good old Grsec RBAC policy if I hope for desktop functionality? Best Regards to all members and especially to Hardened developers. If you go Hardened, you cant stop it. -- dr Tóth Attila, Radiológus Szakorvos jelölt, 06-30-5962-962 Attila Toth MD, Radiology Radiologist in Training, +36-30-5962-962 -- gentoo-hardened@gentoo.org mailing list
