Hi.... On Thu, Jun 28, 2001 at 06:22:43PM +0200, David Spreen wrote: >I know, there were lots of discussions around this, but I'll try this anyway. >Why isn't it possible to make a hardened distribution? >The mean point is, a harden-task isn't everything we have to do. Right... I agree. >What I mean is a distribution in which every programm is compiled using >stackguard. Some security related systems, like lids and so on. >The problem is, hey, of course we can recompile all the programms >and make a -sg version of all our packages, but themn the distribution becomes >too complex I think. Do you maen, we should have tgo versions of the packages, one is normal and one is the secure one? We can't recompile all these packages, that's true. What about the task-harden, what about, that we make it better. One suggestion is,. that we make -sg version of the important packages and let task-harden depend on it. So, an "apt-get intall task-harden" will install all secure packages and remove unsecure packages (because of conflicts). As a name I will take debian-harden.. sound good for me.... :) Have a nice day Jan -- One time, you all will be emulated by linux! ---- Jan- Hendrik Palic Url:"http://www.billgotchy.de"; E-Mail: "palic@billgotchy.de"
Attachment:
pgp8XSNqzEUgI.pgp
Description: PGP signature