* Nitin Kanaskar (nitinv...@gmail.com) [02.05.09 19:15]: > Ok - I am not clear about the terminology - > packages, versions... > But i need to install gentoo 2004/2005 - if this > is right. I am a graduate student doing research on > vulnerabilities, exploits and IDS. Hence I am looking > for older gentoo installations which i know have > some vulnerabilities.
> If i have to build whole OS from source, I am willing
> to do that - but could not find any resource on that
> old stuff.
>
Are you totally aware of what gentoo is about?
You always build the Gentoo OS from source. From upstream source! That's
the hole point of gentoo. And since you are able to do a vast amount of
choices, I think there is no gentoo installation alike in the world,
especially when it comes to binaries.
Also there is no defined set of software versions, which could make a
version of gentoo, as the binary dist have. Everything is in fluent
change and update. So there are no "old" installations exept those
someone forgot over the time.
> Hope I am clear about why I am looking for
> such old stuff.
>
Gentoo could be helpful to build such old stuff, the ebuilds are all in
the cvs and if you have got the upstream tarball, you can easily rebuild
the vulnerable software. But beware of some nasty depandency problems.
Sebastian
--
" Religion ist das Opium des Volkes. " | _ ASCII ribbon campaign
Karl Marx | ( ) against HTML e-mail
s...@sti@N GÜNTHER | X against M$ attachments
mailto:sam...@guenther-roetgen.de | / \ www.asciiribbon.org
pgpkmlzA8HpQn.pgp
Description: PGP signature
