Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/xml/htdocs/proj/en/hardened/rsbac/transition.xml
diff options
context:
space:
mode:
Diffstat (limited to 'xml/htdocs/proj/en/hardened/rsbac/transition.xml')
-rw-r--r--xml/htdocs/proj/en/hardened/rsbac/transition.xml60
1 files changed, 60 insertions, 0 deletions
diff --git a/xml/htdocs/proj/en/hardened/rsbac/transition.xml b/xml/htdocs/proj/en/hardened/rsbac/transition.xml
new file mode 100644
index 00000000..0c372b6b
--- /dev/null
+++ b/xml/htdocs/proj/en/hardened/rsbac/transition.xml
@@ -0,0 +1,60 @@
+<?xml version='1.0' encoding="UTF-8"?> <!DOCTYPE guide SYSTEM
+"/dtd/guide.dtd">
+
+<guide link="transition.xml">
+
+<title>Rule Set Based Access Control (RSBAC) for Linux -
+Transition from rsbac-sources to hardened-sources </title>
+
+<author title="Author">
+ <mail link="kang@gentoo.org">Guillaume Destuynder</mail>
+</author>
+<abstract> This document will help you transioning from
+rsbac-sources to hardened-sources </abstract>
+
+<!-- The content of this document is licensed under the CC-BY-SA license
+--> <!-- See http://creativecommons.org/licenses/by-sa/1.0 --> <license/>
+
+<version>1.0</version> <date>15 February 2006</date>
+
+<chapter>
+<title>RSBAC</title>
+<section> <title>Why ?</title>
+<body>
+
+<note> Currently only the 2.4 kernels are affected </note>
+
+<p> All hardened patches are currently present in the hardened-sources
+ kernel. SELinux as well as GrSecurity MAC solutions are also present.
+ The current RSBAC kernel is simply a copy of this hardened-sources
+ kernel, with RSBAC patches added and GrSecurity patches disabled. </p>
+
+<p> When users are looking for the kernel to install, they install
+ this very one. Most often, they assume the RSBAC kernel is simply not
+ present because not inside of the "hardened kernel". </p>
+
+<p> Finally, why having two versions of the almost same kernel when
+ it can just be one ? </p>
+
+</body>
+</section>
+<section> <title>How ?</title>
+<body>
+
+<p> The transition is very simple. In short, you just have to emerge
+ the hardened-sources kernel instead of the usual rsbac-sources one.
+ Make sure to also add the rsbac local use flag so that the RSBAC
+ patches get applied. </p>
+
+<impo> Make sure you are using the 2.4 kernel. 2.6 kernels have not yet been
+ transitionned </impo>
+
+<pre caption="Adding the rsbac local use flag">
+ # <i>echo "sys-kernel/hardened-sources rsbac" >> /etc/portage/packages.use</i>
+ # <i>emerge hardened-sources</i>
+</pre>
+
+
+</body> </section> </chapter>
+
+</guide>