View previous topic :: View next topic |
Author |
Message |
mmilhome n00b
Joined: 23 Dec 2003 Posts: 19 Location: São Paulo, Brazil
|
Posted: Mon Feb 09, 2004 12:15 pm Post subject: hardened-sources vs. selinux-sources |
|
|
Hi,
I am trying to make a litle security stable server that will be connected to the internet using an ADSL. I was installing gentoo stage1 and now I am about to choose what kernel to use. I was reading the gentoo kernel manual and I would like to know what are the diferences from hardened-sources and selinux-sources? what to choose? My machine will be a all in one server, it will run apache, wu-ftp, samba, and maybe kde becouse I will also use as a workstation some times......
Thank You _________________ -----------------------------------
Thank You
Marcus Renaud Milhomem
"The Box Said:
Requires MS Windows 2000 or Better, So I Installed Linux" |
|
Back to top |
|
|
twilight Tux's lil' helper
Joined: 09 Feb 2003 Posts: 144 Location: Linuxland
|
Posted: Mon Feb 09, 2004 12:49 pm Post subject: |
|
|
aehm...
the SE-Linux was developed from some guys in the
US-Government, so CIA FBI and so on are included.
The aim was to create a totally secure linux platform...
the "hardened" linux is, as far as i know, patched with
several security-issues and improvements that are tested
and considered rock-hard or at least "less harmful"...
so, chose yourself... i personally would tend to se-linux
But don`t use KDE... it`s totally bloated and maybe a
security-hole... use something small and try to not auto-start
the X-Server at boottime... only if you need it
Greetings,
twilight |
|
Back to top |
|
|
P.Wray n00b
Joined: 06 Feb 2004 Posts: 15
|
Posted: Mon Feb 09, 2004 1:06 pm Post subject: |
|
|
SE-Linux: http://www.nsa.gov/selinux
Question: Has SE-Linux been implemented in the X-Server yet? |
|
Back to top |
|
|
Method Retired Dev
Joined: 16 Nov 2002 Posts: 20
|
Posted: Fri Feb 13, 2004 5:55 pm Post subject: |
|
|
twilight wrote: | aehm...
the SE-Linux was developed from some guys in the
US-Government, so CIA FBI and so on are included.
The aim was to create a totally secure linux platform...
the "hardened" linux is, as far as i know, patched with
several security-issues and improvements that are tested
and considered rock-hard or at least "less harmful"...
so, chose yourself... i personally would tend to se-linux
But don`t use KDE... it`s totally bloated and maybe a
security-hole... use something small and try to not auto-start
the X-Server at boottime... only if you need it
Greetings,
twilight |
uhh
the CIA/FBI have nothing to do with SELinux, furthermore hardened-sources with USE="selinux" also adds the selinux patches, without it it adds grsec. Hardened-sources also has PaX and some other security extra's. Hardened-sources is strongly recommended over selinux-sources as it can bring much additional benefit/security. _________________ Joshua Brindle
Gentoo Developer |
|
Back to top |
|
|
|
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
|