Hi All,
I am following the selinux-guide Sven updated recently on a VM with a
clean install.
I started with the hardened stage 3 as recommended and am using the latest
stable hardened sources.
At step 4.2.2 (Install policies and utilities) the emerge fails with the
error:
/usr/bin/install: canno
On Sat, October 15, 2011 8:41 pm, Sven Vermeulen wrote:
> Thoughts and comments always welcome. Saying "Current one is better" is
> also accepted ;)
Hi Sven,
Thank you for your work on this. I am currently using the guide to see how
SELinux works.
In 4.1.5, the only ~arch package that is listed
On Wed, Oct 19, 2011 at 02:32:14PM +0200, J. Roeleveld wrote:
> I am following the selinux-guide Sven updated recently on a VM with a
> clean install.
> I started with the hardened stage 3 as recommended and am using the latest
> stable hardened sources.
>
> At step 4.2.2 (Install policies and uti
On Wed, Oct 19, 2011 at 02:35:31PM +0200, J. Roeleveld wrote:
> Thank you for your work on this. I am currently using the guide to see how
> SELinux works.
>
> In 4.1.5, the only ~arch package that is listed
> (sys-process/vixie-cron-4.1-r11) is alread available with "amd64".
Ah yes, the package
On Wed, October 19, 2011 2:35 pm, Sven Vermeulen wrote:
> On Wed, Oct 19, 2011 at 02:32:14PM +0200, J. Roeleveld wrote:
>> I am following the selinux-guide Sven updated recently on a VM with a
>> clean install.
>> I started with the hardened stage 3 as recommended and am using the
>> latest
>> stab
On Wed, October 19, 2011 2:38 pm, Sven Vermeulen wrote:
> On Wed, Oct 19, 2011 at 02:35:31PM +0200, J. Roeleveld wrote:
>> Are there any other packages that need to be unmasked?
>
> There shouldn't be, although we're quite near a stabilization of the more
> recent userspace utilities now (which is
On Wed, October 19, 2011 2:38 pm, Sven Vermeulen wrote:
> On Wed, Oct 19, 2011 at 02:35:31PM +0200, J. Roeleveld wrote:
>> Thank you for your work on this. I am currently using the guide to see
>> how
>> SELinux works.
>>
>> In 4.1.5, the only ~arch package that is listed
>> (sys-process/vixie-cron
On Wed, Oct 19, 2011 at 2:46 PM, J. Roeleveld wrote:
> If you think it is usefull, can you provide me with a list of which
> packages and versions are going to be stabilized soon and I will do the
> test with those versions.
> Then we're certain they'll do fine on a clean install done according to
On Wed, Oct 19, 2011 at 2:50 PM, J. Roeleveld wrote:
> Not sure if both work, but shouldn't the file for unmasking packages be:
> "/etc/portage/package.keywords" or "/etc/portage/package.keywords/" ?
>
> That's the file I have been using for years now to unmask files.
That's the old one (and
On Wed, October 19, 2011 2:51 pm, Sven Vermeulen wrote:
> On Wed, Oct 19, 2011 at 2:46 PM, J. Roeleveld wrote:
>> If you think it is usefull, can you provide me with a list of which
>> packages and versions are going to be stabilized soon and I will do the
>> test with those versions.
>> Then we'r
On Wed, Oct 19, 2011 at 2:54 PM, J. Roeleveld wrote:
> To the latest ~amd64? Or to which version? :)
Latest is fine (for now ;-)
Wkr,
Sven Vermeulen
On Wed, October 19, 2011 2:56 pm, Sven Vermeulen wrote:
> On Wed, Oct 19, 2011 at 2:54 PM, J. Roeleveld wrote:
>> To the latest ~amd64? Or to which version? :)
>
> Latest is fine (for now ;-)
>
> Wkr,
> Sven Vermeulen
Ok, selecting latest.
Compared to the latest snapshot, there is a newer gcc
12 matches
Mail list logo
