!prlZxmnmAGuCYHUNSw:neko.dev

Gentoo Hardening

65 Members
If you care too much about security and Gentoo, this is your place to talk about it. Bring your hard hats, it sometimes gets heated (please behave). (Unofficial)21 Servers

Load older messages


SenderMessageTime
15 May 2022
@deepbluev7:neko.devNico
In reply to @memorysafetybelike:envs.net
Often enough it breaks when I update my system
Duh, you need to update you systemd
19:41:34
@life-the-user:matrix.orglife-the-user
In reply to @life-the-user:matrix.org
Openrc service script is just few bash functions right?
?
19:41:38
@memorysafetybelike:envs.netBabba27's Evil Twin (DriftNotSkid) [they|them] (๐Ÿ•Š๏ธ Lena)
In reply to @deepbluev7:neko.dev
Duh, you need to update you systemd
I do. I update everything at once
19:42:05
@deepbluev7:neko.devNico
In reply to @memorysafetybelike:envs.net
I do. I update everything at once
It was a joke ;p
19:42:50
@deepbluev7:neko.devNicoAbout you forgetting to update the d too19:42:58
@memorysafetybelike:envs.netBabba27's Evil Twin (DriftNotSkid) [they|them] (๐Ÿ•Š๏ธ Lena)Last time I ran Ubutnu on bare metal I had multiple systemd issues that prevent booting, despite the fact that I was on a default config19:43:10
@inference:tchncs.deinference
In reply to @memorysafetybelike:envs.net
If systemd wasn't the de facto standard I would never have considered using it. It's large, complex, hard to use, bloated, and vulnerable
Facts. I have no idea what mentality anyone used other than "convenience" to make it the de facto. It's an embarrassment to Linux and its modularity.
19:43:23
@life-the-user:matrix.orglife-the-userinference: do you know how to create openrc services?19:43:37
@inference:tchncs.deinference
In reply to @life-the-user:matrix.org
inference: do you know how to create openrc services?
Yes. It's not that difficult.
19:43:47
@deepbluev7:neko.devNicoI had lots of systemd issues when distros switched to it, but not many since then19:43:48
@life-the-user:matrix.orglife-the-user
In reply to @inference:tchncs.de
Yes. It's not that difficult.
Is it just few bash functions?
19:43:58
@memorysafetybelike:envs.netBabba27's Evil Twin (DriftNotSkid) [they|them] (๐Ÿ•Š๏ธ Lena)
In reply to @inference:tchncs.de
Facts. I have no idea what mentality anyone used other than "convenience" to make it the de facto. It's an embarrassment to Linux and its modularity.
RedHat petitioned pretty hard for systemd to become the standard
19:44:08
@inference:tchncs.deinference
In reply to @life-the-user:matrix.org
Is it just few bash functions?
The packages usually have their own you just copy across to init.
19:44:17
@inference:tchncs.deinference
In reply to @memorysafetybelike:envs.net
RedHat petitioned pretty hard for systemd to become the standard
Ah, yes, Red Hat, as always.
19:44:31
@deepbluev7:neko.devNico
In reply to @life-the-user:matrix.org
Is it just few bash functions?
https://github.com/OpenRC/openrc/blob/master/service-script-guide.md
19:44:35
@life-the-user:matrix.orglife-the-userinference: I think I will just choose openrc as main init system to learn19:44:40
@life-the-user:matrix.orglife-the-userThat means I wonโ€™t be able to use void19:44:49
@life-the-user:matrix.orglife-the-userCuz lazy to learn runit19:44:53
@life-the-user:matrix.orglife-the-user
In reply to @inference:tchncs.de
The packages usually have their own you just copy across to init.
Iโ€™m planning to create my own services
19:45:12
@memorysafetybelike:envs.netBabba27's Evil Twin (DriftNotSkid) [they|them] (๐Ÿ•Š๏ธ Lena)Runit is literally the easiest init to learn. The entire usage guide fits into 4 sentences19:45:31
@septemberdismay:tchncs.deseptemberdismay
In reply to @life-the-user:matrix.org
That means I wonโ€™t be able to use void
Just use https://git.arrr.cloud/whichdoc/plagueos
19:45:41
@septemberdismay:tchncs.deseptemberdismayIts literally so easy19:45:48
@septemberdismay:tchncs.deseptemberdismayOr if you want something more secure than that go for hardenedbsd.org or qubes-os.org19:46:18
@memorysafetybelike:envs.netBabba27's Evil Twin (DriftNotSkid) [they|them] (๐Ÿ•Š๏ธ Lena)If you can create a symlink you're about half way to being a Runit expert19:46:40
@life-the-user:matrix.orglife-the-user
In reply to @septemberdismay:tchncs.de
Just use https://git.arrr.cloud/whichdoc/plagueos
I donโ€™t need security sooo much actually
19:47:17
@life-the-user:matrix.orglife-the-userI also want it to be usable19:47:28
@inference:tchncs.deinference
In reply to @life-the-user:matrix.org
inference: I think I will just choose openrc as main init system to learn
OpenRC is probably the 2nd most widely used init. It has support of Gentoo hackery, Devuan, and many others.
19:48:58
@inference:tchncs.deinferenceIt's also based on the rock solid 40 year old sysvinit which does one thing and does it well.19:49:39
@memorysafetybelike:envs.netBabba27's Evil Twin (DriftNotSkid) [they|them] (๐Ÿ•Š๏ธ Lena)
In reply to @septemberdismay:tchncs.de
Or if you want something more secure than that go for hardenedbsd.org or qubes-os.org
I wouldn't say HardenedBSD is definitively more secure than Plague. Both are fairly early in development
19:50:05
@inference:tchncs.deinference
In reply to @memorysafetybelike:envs.net
I wouldn't say HardenedBSD is definitively more secure than Plague. Both are fairly early in development
HBSD is the better choice due to long-term development and the fact that it has CFI in base and packages. That's extremely rare.
19:50:43

There are no newer messages yet.


Back to Room ListRoom Version: 6