On 10/4/2010 10:50 AM, Tom Hendrikx wrote: > This means that I will have only the changes triggered by the profile > change later on. Are there particular issues that I need to take care > of? And how to deal with the gcc change? I remember that there was some > kind of 'vanilla to hardened' guide, but google is failing me (I did > find some forum threads)...
The closest thing to an "official" guide is the PaX quickstart: http://www.gentoo.org/proj/en/hardened/pax-quickstart.xml but the basic idea is just to do this: # eselect profile set <whatever> # emerge -1av binutils gcc glibc # emerge -e world and then build and install a PaX kernel. (The options have shifted around some since the guide was written, but you should be able to find them easily enough.) As for the gcc downgrade, that shouldn't be happening. I'm using the normal hardened profile: hardened/linux/amd64/10.0 and it's giving me gcc-4.4.4-r2 and glibc-2.12.1-r1. Make sure you have the right profile selected and that they're up to date. (hardened gcc used to lag behind stock gcc but I thought that was all done with now.) --Mike
