Re: Debian Hardened project (question about use of the "Debian"trademark)
Martin Michlmayr dijo [Sun, Sep 19, 2004 at 02:12:54PM +0100]:
> I've read the comments and maybe "hardened" is an appropriate name for
> such an effort. I don't know, and I'm aware that I'm overly
> conservative in such regards, but so far I have not seen many other
> Debian developers saying that's it a good idea either. Furthermore,
> my main problem is that you announce this project as "Debian Hardened"
> before there is any consensus at all that Debian is interested in such
> a project. Again, I haven't seen many Debian people responding to
> your mail saying "great idea, let's do this".
I think we will all agree that we want Debian to be better - to be as
good as we can make it. And having Debian a couple of notches higher
security-wise would definitively be a good thing.
The problem is that I am sure that if we were to require everything to
be compiled with all those tricks enabled, a good deal of our archive
would FTBFS, and we would be squishing lots and lots of bugs. The end
result would probably be much better, yes, but the cost for it might
be a bit high. And, of course, there will surely be (I have never
worked with all those enhancements) some packages which will not work
with the new scheme, or that will work better (i.e., a
performance-intensive program) without all the safeguards on.
I am sure that if Lorenzo and company can prove the process to be not
too hairy, we will all go for it.
Greetings,
--
Gunnar Wolf - gwolf@gwolf.org - (+52-55)1451-2244 / 5554-9450
PGP key 1024D/8BB527AF 2001-10-23
Fingerprint: 0C79 D2D1 2C4E 9CE4 5973 F800 D80E F35A 8BB5 27AF
Reply to: