Post 9wjMM686ZaNU9bfMqe by t0ta1packg3@social.linux.pizza
(DIR) More posts by t0ta1packg3@social.linux.pizza
(DIR) Post #9whU6DzbyuYRDyiR0K by t0ta1packg3@social.linux.pizza
2020-07-03T06:24:10Z
0 likes, 1 repeats
From an IT/Network Security perspective, is there any greater benefit from using a Gentoo based platform over Arch?
(DIR) Post #9wias8NIxumUaGzCa0 by mgrondin@social.linux.pizza
2020-07-03T19:14:38Z
0 likes, 1 repeats
@t0ta1packg3 The only thing that comes to mind is the ability to control what parts of some packages are actually built. Like you want package X to use mysql but not package Y then it can probably be controlled by USE flags.I cannot come up with a specific example but i would think it would apply...Or if you want to completely disable(like make unavailable) certain apache/nginx modules that can also be done with USE flags
(DIR) Post #9wib3nQUg3vT5X2SQa by mgrondin@social.linux.pizza
2020-07-03T19:16:49Z
0 likes, 1 repeats
@t0ta1packg3 A couple things that come to mind...the ability to control what parts of some packages are actually built. Like you want package X to use mysql but not package Y then it can probably be controlled by USE flags.I cannot come up with a specific example but i would think it would apply...Or if you want to completely disable(like make unavailable) certain apache/nginx modules that can also be done with USE flagsBut i don't know how big of pros these really are
(DIR) Post #9wic4KBeyQhoeEur4K by t0ta1packg3@social.linux.pizza
2020-07-03T19:28:07Z
0 likes, 1 repeats
@mgrondin I've thought of that. And I agree that it would be a plus to have that control over a system. I'm trying to weigh out if it would be worth the time to compile the kernel for that. Arch is working fine, at the moment, but I wondering if it would be easier to make Gentoo more secure with the USE flags. I have a bit of time to ponder it, though.
(DIR) Post #9wiccAXrKR3eadRCwi by mgrondin@social.linux.pizza
2020-07-03T19:34:16Z
0 likes, 1 repeats
@t0ta1packg3 In my oppinion the kernel compile time specifically is small. Depending what else you plan on installing on the system there are other things that will take MUCH more time to compile VS the kernel. Like FireFox or LibreOffice. Depending on your system CPU and such it might not be worth it.A plus for me is running code specifically built for the process in your system. So i deal with compile times for that.
(DIR) Post #9wikkh6owL3JXEMoC0 by t0ta1packg3@social.linux.pizza
2020-07-03T21:05:25Z
0 likes, 1 repeats
@mgrondin That makes sense. I currently use more minimalistic browsers (BadWolf, Qutebrowser) but I'm stuck with LibreOffice until I can find a better (smaller) alternative to run in a terminal. Most of what would be running is more security based applications and IDS's. There would be some remote access and script writing, too. Ideally, it would be a very small system designed for speed and security. Is it easier to harden the Gentoo kernel than it is for Arch?
(DIR) Post #9wim3LBellpj095Gu8 by mgrondin@social.linux.pizza
2020-07-03T21:19:56Z
0 likes, 1 repeats
@t0ta1packg3 I'm no expert when it comes to kernel hardening... But I will say that since the kernel is built from source you can enable/disable anything you want/need
(DIR) Post #9wioo4bsQ7EF6hlAq8 by mgrondin@social.linux.pizza
2020-07-03T21:50:49Z
0 likes, 1 repeats
@t0ta1packg3 and also you get to apply any patches you want
(DIR) Post #9wiuc0b672Nkud1erY by mgrondin@social.linux.pizza
2020-07-03T22:55:53Z
0 likes, 1 repeats
@t0ta1packg3 Also something i just found not long ago but have not tried yethttps://github.com/andmarti1424/sc-imCLI/Terminal SpreadSheet editor...
(DIR) Post #9wjMM686ZaNU9bfMqe by t0ta1packg3@social.linux.pizza
2020-07-04T04:06:47Z
0 likes, 1 repeats
@mgrondin Thanks! I think I saw a YouTube video on this a few weeks back. I'll have to check it out.