Hi there ! I'm quite new to Gentoo, and I looked for something hardened that I can control entirely from kernel build to use. So I found Gentoo-Hardened (then I started to have less and less time... strange). My aim is to have an hardened host which will build hardened targets. Targets will then be deployed on real machines by installing them or by running them on a LiveCD. The main problem I can see from my rookie level is that I want each target to be built with its own version of GCC/LIBC/(basethings) and its own "snapshot" of a portage tree at a T time. I want the final target to be buildtools-less, portage-less, almost-everything-except-the-kernel-and-bash-less...
I don't know how to achieve that. I looked to Catalyst but I don't like some points : it uses profiles (and I would have to maintain many profiles, which seems hard as custom profile are not easily usable), its internal mechanic is 'hidden', and for LiveCD or Stage4, it has a substractive behavior (it keeps everything from previous stages from where it builds, then it unmerges and removes things to get the final target). I would prefer a "2 step" additive way. Step 1 : I would like to build, for each target, a "build" dir which contains an hardened toolchain with specified versions of GCC/LIBC/etc, Step 2 : then from this build dir I would emerge things I need by hand from zero in a target dir, and build a kernel. Is someone having some ideas on that ? Many thanks in advance :) -- Pierre. "Sometimes when I'm talking, my words can't keep up with my thoughts. I wonder why we think faster than we speak. Probably so we can think twice." - Bill Watterson
