On Fri, 8 Jun 2012 16:07:56 +0100 Jorge Martínez López <jorg...@gmail.com> wrote:
> Hi there! > > I run Hardened in my desktop and it mostly works. > > When I switched profiles I looked at which use flags changed using > "emerge -pudvN world" and then I enabled them manually using ufed. > > With Hardened forget using Skype. PaX will kill multimedia > applications such as Totem, use paxctl to solve this. I have some > issues with Phython applications such as Gwibber and Hotot, the only > way to solve it seems to use paxctl with the python binary, which I am > not willing to. > > Greetings, +1 for using Hardened as a desktop. Skype should work with PaX now; it used to need an exact paxctl command to get running but its ebuild now sets that. Is there a nice way that you can un-pax-mark Python(/etc.) through Portage, or do you have to do it manually? (And does that horribly break Portage?) Personally I'm a little concerned about the Firefox + Chromium pax-marks; one day I'll get grsec set up... It would be nice if there were desktop Hardened profiles though. The only reason I maintain a full set of USE flags in make.conf is so that it is portable between hardened and regular. Cheers, Bryan
