diff options
Diffstat (limited to 'profiles/hardened/linux/x86')
26 files changed, 151 insertions, 0 deletions
diff --git a/profiles/hardened/linux/x86/10.0/desktop/parent b/profiles/hardened/linux/x86/10.0/desktop/parent new file mode 100644 index 00000000..ad6c5e12 --- /dev/null +++ b/profiles/hardened/linux/x86/10.0/desktop/parent @@ -0,0 +1,2 @@ +.. +../../../../../targets/desktop diff --git a/profiles/hardened/linux/x86/10.0/developer/parent b/profiles/hardened/linux/x86/10.0/developer/parent new file mode 100644 index 00000000..4c893748 --- /dev/null +++ b/profiles/hardened/linux/x86/10.0/developer/parent @@ -0,0 +1,2 @@ +.. +../../../../../targets/developer diff --git a/profiles/hardened/linux/x86/10.0/make.defaults b/profiles/hardened/linux/x86/10.0/make.defaults new file mode 100644 index 00000000..5d1c665e --- /dev/null +++ b/profiles/hardened/linux/x86/10.0/make.defaults @@ -0,0 +1,8 @@ +# Copyright 1999-2008 Gentoo Foundation. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/profiles/hardened/linux/x86/10.0/make.defaults,v 1.1 2009/08/06 07:58:35 ssuominen Exp $ + +# STAGE1_USE does not stack +STAGE1_USE="hardened nptl nptlonly pic" + +USE="-unicode" diff --git a/profiles/hardened/linux/x86/10.0/no-nptl/parent b/profiles/hardened/linux/x86/10.0/no-nptl/parent new file mode 100644 index 00000000..0627a62b --- /dev/null +++ b/profiles/hardened/linux/x86/10.0/no-nptl/parent @@ -0,0 +1,2 @@ +.. +../../../../../features/no-nptl diff --git a/profiles/hardened/linux/x86/10.0/parent b/profiles/hardened/linux/x86/10.0/parent new file mode 100644 index 00000000..605d0438 --- /dev/null +++ b/profiles/hardened/linux/x86/10.0/parent @@ -0,0 +1,2 @@ +.. +../../../../releases/10.0 diff --git a/profiles/hardened/linux/x86/10.0/server/parent b/profiles/hardened/linux/x86/10.0/server/parent new file mode 100644 index 00000000..c3990165 --- /dev/null +++ b/profiles/hardened/linux/x86/10.0/server/parent @@ -0,0 +1,2 @@ +.. +../../../../../targets/server diff --git a/profiles/hardened/linux/x86/2008.0/deprecated b/profiles/hardened/linux/x86/2008.0/deprecated new file mode 100644 index 00000000..6920ba0c --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/deprecated @@ -0,0 +1,7 @@ +hardened/linux/x86/10.0 +# Check 'eselect profile list'. +# Find the number that corresponds with the hardened/linux/x86/10.0 profile. +# Use 'eselect profile set <number>' to set a new /etc/make.profile symlink. +# +# Reference: http://www.gentoo.org/doc/en/gentoo-upgrading.xml +# See: "General instructions" in Section 3. "Profile updating instructions" diff --git a/profiles/hardened/linux/x86/2008.0/desktop/deprecated b/profiles/hardened/linux/x86/2008.0/desktop/deprecated new file mode 100644 index 00000000..6920ba0c --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/desktop/deprecated @@ -0,0 +1,7 @@ +hardened/linux/x86/10.0 +# Check 'eselect profile list'. +# Find the number that corresponds with the hardened/linux/x86/10.0 profile. +# Use 'eselect profile set <number>' to set a new /etc/make.profile symlink. +# +# Reference: http://www.gentoo.org/doc/en/gentoo-upgrading.xml +# See: "General instructions" in Section 3. "Profile updating instructions" diff --git a/profiles/hardened/linux/x86/2008.0/desktop/make.defaults b/profiles/hardened/linux/x86/2008.0/desktop/make.defaults new file mode 100644 index 00000000..48a2daf6 --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/desktop/make.defaults @@ -0,0 +1,7 @@ +# Copyright 1999-2009 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/profiles/hardened/linux/x86/2008.0/desktop/make.defaults,v 1.2 2009/08/08 00:55:28 solar Exp $ + +# Samuli Suominen <ssuominen@gentoo.org> (06 Aug 2009) +# Deprecated since 10.0 profiles. +USE="esd" diff --git a/profiles/hardened/linux/x86/2008.0/desktop/parent b/profiles/hardened/linux/x86/2008.0/desktop/parent new file mode 100644 index 00000000..ad6c5e12 --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/desktop/parent @@ -0,0 +1,2 @@ +.. +../../../../../targets/desktop diff --git a/profiles/hardened/linux/x86/2008.0/developer/deprecated b/profiles/hardened/linux/x86/2008.0/developer/deprecated new file mode 100644 index 00000000..6920ba0c --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/developer/deprecated @@ -0,0 +1,7 @@ +hardened/linux/x86/10.0 +# Check 'eselect profile list'. +# Find the number that corresponds with the hardened/linux/x86/10.0 profile. +# Use 'eselect profile set <number>' to set a new /etc/make.profile symlink. +# +# Reference: http://www.gentoo.org/doc/en/gentoo-upgrading.xml +# See: "General instructions" in Section 3. "Profile updating instructions" diff --git a/profiles/hardened/linux/x86/2008.0/developer/parent b/profiles/hardened/linux/x86/2008.0/developer/parent new file mode 100644 index 00000000..4c893748 --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/developer/parent @@ -0,0 +1,2 @@ +.. +../../../../../targets/developer diff --git a/profiles/hardened/linux/x86/2008.0/make.defaults b/profiles/hardened/linux/x86/2008.0/make.defaults new file mode 100644 index 00000000..5baa4c83 --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/make.defaults @@ -0,0 +1,8 @@ +# Copyright 1999-2008 Gentoo Foundation. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/profiles/hardened/linux/x86/2008.0/make.defaults,v 1.2 2008/04/21 20:11:14 phreak Exp $ + +# STAGE1_USE does not stack +STAGE1_USE="hardened nptl nptlonly pic" + +USE="-unicode" diff --git a/profiles/hardened/linux/x86/2008.0/no-nptl/deprecated b/profiles/hardened/linux/x86/2008.0/no-nptl/deprecated new file mode 100644 index 00000000..0760bb66 --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/no-nptl/deprecated @@ -0,0 +1,8 @@ +hardened/linux/x86/10.0/no-nptl +# Example change to hardened/linux/x86/10.0/no-nptl profile: +# cd /etc +# rm make.profile +# ln -s ../usr/portage/profiles/hardened/linux/x86/10.0/no-nptl make.profile +# +# Reference: http://www.gentoo.org/doc/en/gentoo-upgrading.xml +# See: "General instructions" in Section 3. "Profile updating instructions" diff --git a/profiles/hardened/linux/x86/2008.0/no-nptl/parent b/profiles/hardened/linux/x86/2008.0/no-nptl/parent new file mode 100644 index 00000000..0627a62b --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/no-nptl/parent @@ -0,0 +1,2 @@ +.. +../../../../../features/no-nptl diff --git a/profiles/hardened/linux/x86/2008.0/parent b/profiles/hardened/linux/x86/2008.0/parent new file mode 100644 index 00000000..3c71bf2b --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/parent @@ -0,0 +1,2 @@ +.. +../../../../releases/2008.0 diff --git a/profiles/hardened/linux/x86/2008.0/server/deprecated b/profiles/hardened/linux/x86/2008.0/server/deprecated new file mode 100644 index 00000000..6920ba0c --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/server/deprecated @@ -0,0 +1,7 @@ +hardened/linux/x86/10.0 +# Check 'eselect profile list'. +# Find the number that corresponds with the hardened/linux/x86/10.0 profile. +# Use 'eselect profile set <number>' to set a new /etc/make.profile symlink. +# +# Reference: http://www.gentoo.org/doc/en/gentoo-upgrading.xml +# See: "General instructions" in Section 3. "Profile updating instructions" diff --git a/profiles/hardened/linux/x86/2008.0/server/parent b/profiles/hardened/linux/x86/2008.0/server/parent new file mode 100644 index 00000000..c3990165 --- /dev/null +++ b/profiles/hardened/linux/x86/2008.0/server/parent @@ -0,0 +1,2 @@ +.. +../../../../../targets/server diff --git a/profiles/hardened/linux/x86/make.defaults b/profiles/hardened/linux/x86/make.defaults new file mode 100644 index 00000000..971f5ec0 --- /dev/null +++ b/profiles/hardened/linux/x86/make.defaults @@ -0,0 +1,25 @@ +# Copyright 1999-2006 Gentoo Foundation. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/profiles/hardened/linux/x86/make.defaults,v 1.7 2009/12/13 21:45:33 remi Exp $ + +ARCH="x86" +ACCEPT_KEYWORDS="x86" + +CHOST="i686-pc-linux-gnu" +CFLAGS="-march=i686 -O2 -pipe" +CXXFLAGS="${CFLAGS}" + +USE="berkdb crypt hardened nptl nptlonly pam pic readline ssl tcpd zlib" + +# 2006/08/18 - Donnie Berkholz <dberkholz@gentoo.org> +# Defaults for video drivers +VIDEO_CARDS="apm ark chips cirrus cyrix dummy fbdev glint i128 i740 intel \ + mach64 mga neomagic nsc nv r128 radeon rendition s3 s3virge savage \ + siliconmotion sis sisusb tdfx tga trident tseng v4l vesa via vmware \ + voodoo" + +# 2006/12/21 - Andrej Kacian <ticho@gentoo.org> +# Defaults for audio drivers +ALSA_CARDS="ali5451 als4000 atiixp atiixp-modem bt87x ca0106 cmipci emu10k1 \ + emu10k1x ens1370 ens1371 es1938 es1968 fm801 hda-intel intel8x0 intel8x0m \ + maestro3 trident usb-audio via82xx via82xx-modem ymfpci" diff --git a/profiles/hardened/linux/x86/minimal/make.defaults b/profiles/hardened/linux/x86/minimal/make.defaults new file mode 100644 index 00000000..04163169 --- /dev/null +++ b/profiles/hardened/linux/x86/minimal/make.defaults @@ -0,0 +1,15 @@ +# Copyright 2007 Gentoo Foundation. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/profiles/hardened/linux/x86/minimal/make.defaults,v 1.2 2009/07/09 00:47:49 gengor Exp $ + +# - TESTING PROFILE - TESTING PROFILE - +# ------ USE AT YOUR OWN RISK ------ + +USE="-* crypt hardened minimal multicall ncurses pic readline zlib" +PORTDIR=/usr/portage +PKGDIR=${PORTDIR}/packages/${ARCH}/ + +CFLAGS="-march=i686 -Os -pipe" +CXXFLAGS="${CFLAGS}" +FEATURES="nodoc noinfo noman" + diff --git a/profiles/hardened/linux/x86/minimal/parent b/profiles/hardened/linux/x86/minimal/parent new file mode 100644 index 00000000..f3229c5b --- /dev/null +++ b/profiles/hardened/linux/x86/minimal/parent @@ -0,0 +1 @@ +.. diff --git a/profiles/hardened/linux/x86/minimal/virtuals b/profiles/hardened/linux/x86/minimal/virtuals new file mode 100644 index 00000000..590fb849 --- /dev/null +++ b/profiles/hardened/linux/x86/minimal/virtuals @@ -0,0 +1 @@ +virtual/ssh net-misc/dropbear diff --git a/profiles/hardened/linux/x86/package.mask b/profiles/hardened/linux/x86/package.mask new file mode 100644 index 00000000..9a49c4ca --- /dev/null +++ b/profiles/hardened/linux/x86/package.mask @@ -0,0 +1,9 @@ +# Copyright 1999-2009 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/profiles/hardened/linux/x86/package.mask,v 1.5 2009/09/12 02:42:34 gengor Exp $ + +# These packages do more harm than good on hardened. +# Users with nVidia GPUs must use the OSS "nouveau" or "nv" Xorg drivers. +x11-drivers/nvidia-drivers +media-video/nvidia-settings +dev-util/nvidia-cuda-sdk diff --git a/profiles/hardened/linux/x86/package.use.mask b/profiles/hardened/linux/x86/package.use.mask new file mode 100644 index 00000000..e1a21132 --- /dev/null +++ b/profiles/hardened/linux/x86/package.use.mask @@ -0,0 +1,9 @@ +# Copyright 1999-2009 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/profiles/hardened/linux/x86/package.use.mask,v 1.12 2009/10/13 23:02:37 gengor Exp $ + +# cyrus-sasl doesn't work w/ USE=berkdb (#192753) +dev-libs/cyrus-sasl berkdb + +# missing the necessary linux-headers dep +>=net-fs/netatalk-2.0.3-r3 xfs diff --git a/profiles/hardened/linux/x86/parent b/profiles/hardened/linux/x86/parent new file mode 100644 index 00000000..03cb31ce --- /dev/null +++ b/profiles/hardened/linux/x86/parent @@ -0,0 +1,3 @@ +../../../base +.. +../../../arch/x86 diff --git a/profiles/hardened/linux/x86/use.mask b/profiles/hardened/linux/x86/use.mask new file mode 100644 index 00000000..3a07928f --- /dev/null +++ b/profiles/hardened/linux/x86/use.mask @@ -0,0 +1,9 @@ +# Copyright 1999-2009 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/profiles/hardened/linux/x86/use.mask,v 1.5 2009/09/30 05:31:07 gengor Exp $ + +# Binary nvidia drivers are masked, USE flags must be too. +video_cards_nvidia +nvidia +cuda +vdpau |