Unfortunately, no one can be told what Redcore Linux is. You have to see it for yourself!
You are not logged in.
Pages: 1
Topic closed
Hi,
I see one Redcore's distro, usual there are few distro. I want to build a hardened server web. But, how is hardened this only distro ? With SElinux, PAX, Grsecurity ?
Thanks
Best regards
Eric
always going forward
Offline
Redcore is built using Gentoo's hardened profile. Which means SSP (stack smashing protection), FORTIFY_SOURCE level 3, libc assertions, PIE (position independent executables), stack clash protection, RELRO and control flow technology are all enabled by default. We do not use SElinux, but Apparmor is enabled by default instead.
korhal /jails/redcore/amd64/scripts # ./tc-check /bin/bash
/bin/bash:
Position Independent Executable: yes
Stack protected: yes
Fortify Source functions: yes
Read-only relocations: yes
Immediate binding: yesOffline
Hi,
I come back to you, my secure web server before slowly very slowly. Redcore Linux is for me a reference regarding security. Indeed, it is the first distribution that I see that installs hardened. So here it is, if SSP and PIE are easy since they are automatically installed with hardened, I don't know how to reproduce RELRO complete, nor FORTIFY_SOURCE level 3. I try to get information on www but I can't find anything concrete for my assembly . Can you help me ?
Je reviens vers vous, mon serveur web sécurisé avant doucement tout doucement. Redcore Linux est pour moi une référence en ce qui concerne la sécurité. En Effet, c'est la première distribution que je vois qui s'installe en hardened. Alors voilà, si SSP et PIE sont facile puisque installé d'office avec hardened, je ne sais pas comment reproduire RELRO complet, ni FORTIFY_SOURCE level 3. je tente bien de m'informer sur www mais je ne trouve rien de concret pour mon montage. Pouvez-vous m'aider ?
With my thanks
Best regards
Eric
I want to install : stage3-amd64-hardened-openrc-20230416T164657Z.tar.xz
always going forward
Offline
Pages: 1
Topic closed