Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--html/capabilities.html2
-rw-r--r--html/docs/devel-chroots-intro.html2
-rw-r--r--html/docs/glossary.html2
-rw-r--r--html/docs/pax-howto.html2
-rw-r--r--html/etdyn.html6
-rw-r--r--html/gnu-stack.html2
-rw-r--r--html/hardened-toolchain.html2
-rw-r--r--html/hardenedfaq.html4
-rw-r--r--html/hardenedxorg.html6
-rw-r--r--html/index.html42
-rw-r--r--html/index2.html37
-rw-r--r--html/pax-quickstart.html2
-rw-r--r--html/pax-utils.html6
-rw-r--r--html/pic-fix-guide.html2
-rw-r--r--html/pic-guide.html2
-rw-r--r--html/pic-internals.html2
-rw-r--r--html/pie-ssp.html4
-rw-r--r--html/prelude-ids.html2
-rw-r--r--html/primer.html4
-rw-r--r--html/roadmap.html8
-rw-r--r--html/rsbac/intro.html2
-rw-r--r--html/rsbac/overview.html2
-rw-r--r--html/rsbac/quickstart.html2
-rw-r--r--html/rsbac/transition.html2
-rw-r--r--html/selinux-faq.html54
-rw-r--r--html/selinux/index.html22
-rw-r--r--html/selinux/modules/cron.html8
-rw-r--r--html/toolchain-upgrade-guide.html2
28 files changed, 147 insertions, 86 deletions
diff --git a/html/capabilities.html b/html/capabilities.html
index 796046d..6e8fa7a 100644
--- a/html/capabilities.html
+++ b/html/capabilities.html
@@ -409,7 +409,7 @@ set of distinct privileges
<tr><td align="left" class="topsep"><p class="alttext">
<a href="mailto:solar@gentoo.org" class="altlink"><b>solar</b></a>
<br><i>Author</i><br><br>
- <a href="mailto:tocharian@gentoo.org" class="altlink"><b>Adam Mondl</b></a>
+ Adam Mondl
<br><i>Contributor</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/docs/devel-chroots-intro.html b/html/docs/devel-chroots-intro.html
index fd6fd52..61dbec9 100644
--- a/html/docs/devel-chroots-intro.html
+++ b/html/docs/devel-chroots-intro.html
@@ -445,7 +445,7 @@ This guide covers the installation, configuration and set up
of chroots using a tool developed for the Gentoo dev machines.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:pappy@gentoo.org" class="altlink"><b>Alexander Gabert</b></a>
+ <a href="mailto:a.gabert@fh-trier.de" class="altlink"><b>Alexander Gabert</b></a>
<br><i>Author</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/docs/glossary.html b/html/docs/glossary.html
index 25ae194..610af23 100644
--- a/html/docs/glossary.html
+++ b/html/docs/glossary.html
@@ -146,7 +146,7 @@ This document introduces the Gentoo Hardened project and covers
each of its subprojects in simple terms.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:tseng@gentoo.org" class="altlink"><b>Brandon Hale</b></a>
+ <a href="mailto:brandon@inclusivetech.net" class="altlink"><b>Brandon Hale</b></a>
<br><i>Author</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/docs/pax-howto.html b/html/docs/pax-howto.html
index 7fa11b0..e1c16bd 100644
--- a/html/docs/pax-howto.html
+++ b/html/docs/pax-howto.html
@@ -251,7 +251,7 @@ to run.
A quickstart covering PaX and Hardened Gentoo.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:tseng@gentoo.org" class="altlink"><b>Brandon Hale</b></a>
+ <a href="mailto:brandon@inclusivetech.net" class="altlink"><b>Brandon Hale</b></a>
<br><i>Author</i><br><br>
<a href="mailto:blackace@gentoo.org" class="altlink"><b>Blackace</b></a>
<br><i>Editor</i><br></p></td></tr>
diff --git a/html/etdyn.html b/html/etdyn.html
index ca94085..c452472 100644
--- a/html/etdyn.html
+++ b/html/etdyn.html
@@ -190,11 +190,11 @@ These guidelines are required to achieve full Address Space Layout Randomization
<br><i>Author</i><br><br>
<a href="mailto:solar@gentoo.org" class="altlink"><b>solar</b></a>
<br><i>Contributor</i><br><br>
- <a href="mailto:pappy@gentoo.org" class="altlink"><b>Alexander Gabert</b></a>
+ <a href="mailto:a.gabert@fh-trier.de" class="altlink"><b>Alexander Gabert</b></a>
<br><i>Contributor</i><br><br>
- <a href="mailto:zhen@gentoo.org" class="altlink"><b>John Davis</b></a>
+ <a href="mailto:john_davis@pauldavisautomation.com" class="altlink"><b>John Davis</b></a>
<br><i>Editor</i><br><br>
- <a href="mailto:klasikahl@gentoo.org" class="altlink"><b>Zack Gilburd</b></a>
+ Zack Gilburd
<br><i>Editor</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/gnu-stack.html b/html/gnu-stack.html
index 72846bd..7816043 100644
--- a/html/gnu-stack.html
+++ b/html/gnu-stack.html
@@ -412,7 +412,7 @@ If no one can seem to answer your question, give me a poke either on irc
<br><i>Author</i><br><br>
<a href="mailto:pageexec@freemail.hu" class="altlink"><b>The PaX team</b></a>
<br><i>Contributor</i><br><br>
- <a href="mailto:kevquinn@gentoo.org" class="altlink"><b>Kevin F. Quinn</b></a>
+ <a href="mailto:g2@kevquinn.com" class="altlink"><b>Kevin F. Quinn</b></a>
<br><i>Contributor</i><br><br>
<a href="mailto:klondike@gentoo.org" class="altlink"><b>klondike</b></a>
<br><i>Contributor</i><br></p></td></tr>
diff --git a/html/hardened-toolchain.html b/html/hardened-toolchain.html
index 76bf7f0..f6d6043 100644
--- a/html/hardened-toolchain.html
+++ b/html/hardened-toolchain.html
@@ -333,7 +333,7 @@ The following packages have issues with BIND_NOW at the time of writing, and it
Technical description of, and rationale for, the Gentoo Hardened Toolchain modifications.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
-<a href="mailto:kevquinn@gentoo.org" class="altlink"><b>Kevin F. Quinn</b></a>
+<a href="mailto:g2@kevquinn.com" class="altlink"><b>Kevin F. Quinn</b></a>
<br><i>Author</i><br><br>
<a href="mailto:solar@gentoo.org" class="altlink"><b>Ned Ludd</b></a>
<br><i>Contributor</i><br><br>
diff --git a/html/hardenedfaq.html b/html/hardenedfaq.html
index 5658af4..e205b49 100644
--- a/html/hardenedfaq.html
+++ b/html/hardenedfaq.html
@@ -543,11 +543,11 @@ Frequently Asked Questions that arise on the #gentoo-hardened IRC channel and
the gentoo-hardened mailing list.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:tocharian@gentoo.org" class="altlink"><b>Adam Mondl</b></a>
+ Adam Mondl
<br><i>Author</i><br><br>
<a href="mailto:solar@gentoo.org" class="altlink"><b>solar</b></a>
<br><i>Contributor</i><br><br>
- <a href="mailto:kang@gentoo.org" class="altlink"><b>Guillaume Destuynder</b></a>
+ <a href="mailto:kang@insecure.ws" class="altlink"><b>Guillaume Destuynder</b></a>
<br><i>Contributor</i><br><br>
<a href="mailto:pageexec@freemail.hu" class="altlink"><b>The PaX Team</b></a>
<br><i>Contributor</i><br><br>
diff --git a/html/hardenedxorg.html b/html/hardenedxorg.html
index 839b61d..7d2d916 100644
--- a/html/hardenedxorg.html
+++ b/html/hardenedxorg.html
@@ -123,13 +123,13 @@ The PaX flags -P (PAGEEXEC), -S (SEGMEXEC), -M (MPROTECT) as well as -R (RANDMMA
How to install and use Xorg on Hardened Gentoo
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:tocharian@gentoo.org" class="altlink"><b>Adam Mondl</b></a>
+ Adam Mondl
<br><i>Author</i><br><br>
- <a href="mailto:kevquinn@gentoo.org" class="altlink"><b>Kevin Quinn</b></a>
+ <a href="mailto:g2@kevquinn.com" class="altlink"><b>Kevin Quinn</b></a>
<br><i>Contributor</i><br><br>
<a href="mailto:solar@gentoo.org" class="altlink"><b>Ned Ludd</b></a>
<br><i>Contributor</i><br><br>
- <a href="mailto:phreak@gentoo.org" class="altlink"><b>Christian Heim</b></a>
+ <a href="mailto:christian.heim@uni-greifswald.de" class="altlink"><b>Christian Heim</b></a>
<br><i>Contributor</i><br><br>
<a href="mailto:zaid_a@users.sourceforge.net" class="altlink"><b>Zaid A.</b></a>
<br><i>Contributor</i><br></p></td></tr>
diff --git a/html/index.html b/html/index.html
index 89d5342..22740ea 100644
--- a/html/index.html
+++ b/html/index.html
@@ -56,42 +56,47 @@ Gentoo once they've been tested for security and stability by the Hardened team.
<td class="infohead"><b>Role</b></td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Tony Vroon</td>
<td class="tableinfo">chainsaw</td>
<td class="tableinfo">Member ( Hardened sources )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Sven Vermeulen</td>
+ <td class="tableinfo">swift</td>
+ <td class="tableinfo">Member ( SELinux )</td>
+ </tr>
+ <tr>
+ <td class="tableinfo">Bryan Stine</td>
<td class="tableinfo">battousai</td>
<td class="tableinfo">Member ( Bastille Lead )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Anthony G. Basile</td>
<td class="tableinfo">blueness</td>
<td class="tableinfo">Member ( PaX/Grsecurity, Hardened sources )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Gordon Malm</td>
<td class="tableinfo">gengor</td>
<td class="tableinfo">Member ( PaX/Grsecurity, Hardened sources )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Gysbert Wassenaar</td>
<td class="tableinfo">nixnut</td>
<td class="tableinfo">Member ( PPC arch team liaison )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">pebenito</td>
<td class="tableinfo">Member ( SELinux )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Matthew Summers</td>
<td class="tableinfo">quantumsummers</td>
<td class="tableinfo">Member ( Hardened sources, Doc )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Magnus Granberg</td>
<td class="tableinfo">zorry</td>
<td class="tableinfo">Project Lead ( Hardened Toolchain, Doc )</td>
</tr>
@@ -121,11 +126,6 @@ project:
<td class="tableinfo">gizmo</td>
<td class="tableinfo">Policy development, support (SELinux)</td>
</tr>
-<tr>
-<td class="tableinfo">Sven Vermeulen</td>
-<td class="tableinfo">SwifT</td>
-<td class="tableinfo">Documentation writing, policy development, support (SELinux)</td>
-</tr>
</table>
<p class="chaphead"><a name="doc_chap5"></a><span class="chapnum">5.
</span>Subprojects</p>
@@ -142,12 +142,12 @@ project:
<td class="tableinfo">
<a href="selinux/index.html">SELinux</a>
</td>
- <td class="tableinfo">pebenito</td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">SELinux is a system of mandatory access controls. SELinux can enforce the security policy over all processes and objects in the system.</td>
</tr>
<tr>
<td class="tableinfo">PaX/Grsecurity</td>
- <td class="tableinfo">blueness</td>
+ <td class="tableinfo">Anthony G. Basile</td>
<td class="tableinfo">
Grsecurity is a complete security solution providing such features as a MAC or
RBAC system, chroot restrictions, address space modification protection (via
@@ -157,7 +157,7 @@ file race conditions, ipc protections and much more.
</tr>
<tr>
<td class="tableinfo">Hardened Toolchain</td>
- <td class="tableinfo">Zorry</td>
+ <td class="tableinfo">Magnus Granberg</td>
<td class="tableinfo">
Transparent implementation of
<a href="http://pax.grsecurity.net/docs/aslr.txt">PaX</a> address space
@@ -167,7 +167,7 @@ executables.
</tr>
<tr>
<td class="tableinfo">Hardened Kernel Sources</td>
- <td class="tableinfo">blueness</td>
+ <td class="tableinfo">Anthony G. Basile</td>
<td class="tableinfo">
A kernel which provides patches for hardened subprojects, and stability/security
oriented patches. Includes Grsecurity and SELinux.
@@ -175,7 +175,7 @@ oriented patches. Includes Grsecurity and SELinux.
</tr>
<tr>
<td class="tableinfo">Bastille</td>
- <td class="tableinfo">battousai</td>
+ <td class="tableinfo">Bryan Stine</td>
<td class="tableinfo">
Bastille is an interactive application which gives the user suggestions on
securing their machine. It will be customized to make suggestions about other
@@ -296,12 +296,12 @@ GNU Stack Quickstart
</tr>
<tr>
<td class="tableinfo">hardened</td>
- <td class="tableinfo">battousai, blueness, chainsaw, dragonheart, gengor, klondike, nixnut, pebenito, solar, zorry</td>
+ <td class="tableinfo">blueness, chainsaw, gengor, klondike, nixnut, pebenito, solar, swift, zorry</td>
<td class="tableinfo">Hardened Gentoo project packages and policy</td>
</tr>
<tr>
<td class="tableinfo">selinux</td>
- <td class="tableinfo">blueness, pebenito</td>
+ <td class="tableinfo">blueness, pebenito, swift</td>
<td class="tableinfo">Gentoo's Security-Enhanced Linux (SELinux) packages</td>
</tr>
</table>
@@ -335,7 +335,7 @@ greatly appreciated.
</td>
<td width="1%" bgcolor="#dddaec" valign="top"><table border="0" cellspacing="4px" cellpadding="4px">
<tr><td class="topsep" align="center"><p class="altmenu"><a title="View a printer-friendly version" class="altlink" href="index.xml?style=printable">Print</a></p></td></tr>
-<tr><td class="topsep" align="center"><p class="alttext">Updated 2011-1-7</p></td></tr>
+<tr><td class="topsep" align="center"><p class="alttext">Updated August 12, 2011</p></td></tr>
<tr><td class="topsep" align="left"><p class="alttext"><b>Summary: </b>Hardened Gentoo brings advanced security measures to Gentoo Linux.</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">Gentoo Project<br><i>script generated</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
diff --git a/html/index2.html b/html/index2.html
index 8e243b3..469ee86 100644
--- a/html/index2.html
+++ b/html/index2.html
@@ -55,37 +55,37 @@ Gentoo once they've been tested for security and stability by the Hardened team.
<td class="infohead"><b>Role</b></td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Tony Vroon</td>
<td class="tableinfo">chainsaw</td>
<td class="tableinfo">Member ( Hardened sources )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Bryan Stine</td>
<td class="tableinfo">battousai</td>
<td class="tableinfo">Member ( Bastille Lead )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Anthony G. Basile</td>
<td class="tableinfo">blueness</td>
<td class="tableinfo">Member ( PaX/Grsecurity, Hardened sources )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Gordon Malm</td>
<td class="tableinfo">gengor</td>
<td class="tableinfo">Member ( PaX/Grsecurity, Hardened sources )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Gysbert Wassenaar</td>
<td class="tableinfo">nixnut</td>
<td class="tableinfo">Member ( PPC arch team liaison )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Matthew Summers</td>
<td class="tableinfo">quantumsummers</td>
<td class="tableinfo">Member ( Hardened sources, Doc )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Magnus Granberg</td>
<td class="tableinfo">zorry</td>
<td class="tableinfo">Project Lead ( Hardened Toolchain, Doc )</td>
</tr>
@@ -96,12 +96,17 @@ Gentoo once they've been tested for security and stability by the Hardened team.
<td class="infohead"><b></b></td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Sven Vermeulen</td>
+ <td class="tableinfo">swift</td>
+ <td class="tableinfo">Documentation, Userspace tools, Policy development</td>
+ </tr>
+ <tr>
+ <td class="tableinfo">Anthony G. Basile</td>
<td class="tableinfo">blueness</td>
<td class="tableinfo">Policy development, Proxy (non developer contributors)</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">pebenito</td>
<td class="tableinfo">Lead ( Policy, x86, AMD64 )</td>
</tr>
@@ -124,12 +129,12 @@ Gentoo once they've been tested for security and stability by the Hardened team.
<td class="tableinfo">
<a href="selinux/index.html">SELinux</a>
</td>
- <td class="tableinfo">pebenito</td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">SELinux is a system of mandatory access controls. SELinux can enforce the security policy over all processes and objects in the system.</td>
</tr>
<tr>
<td class="tableinfo">PaX/Grsecurity</td>
- <td class="tableinfo">blueness</td>
+ <td class="tableinfo">Anthony G. Basile</td>
<td class="tableinfo">
Grsecurity is a complete security solution providing such features as a MAC or
RBAC system, Chroot restrictions, address space modification protection (via
@@ -139,7 +144,7 @@ file race conditions, ipc protections and much more.
</tr>
<tr>
<td class="tableinfo">Hardened Toolchain</td>
- <td class="tableinfo">Zorry</td>
+ <td class="tableinfo">Magnus Granberg</td>
<td class="tableinfo">
Transparent implementation of
<a href="http://pax.grsecurity.net/docs/aslr.txt">PaX</a> address space
@@ -149,7 +154,7 @@ executables.
</tr>
<tr>
<td class="tableinfo">Hardened-Sources</td>
- <td class="tableinfo">blueness</td>
+ <td class="tableinfo">Anthony G. Basile</td>
<td class="tableinfo">
A kernel which provides patches for hardened subprojects, and stability/security
oriented patches. Includes Grsecurity and SELinux.
@@ -157,7 +162,7 @@ oriented patches. Includes Grsecurity and SELinux.
</tr>
<tr>
<td class="tableinfo">Bastille</td>
- <td class="tableinfo">battousai</td>
+ <td class="tableinfo">Bryan Stine</td>
<td class="tableinfo">
Bastille is an interactive application which gives the user suggestions on
securing their machine. It will be customized to make suggestions about other
@@ -264,12 +269,12 @@ GNU Stack Quickstart</a>
</tr>
<tr>
<td class="tableinfo">hardened</td>
- <td class="tableinfo">battousai, blueness, chainsaw, dragonheart, gengor, klondike, nixnut, pebenito, solar, zorry</td>
+ <td class="tableinfo">blueness, chainsaw, gengor, klondike, nixnut, pebenito, solar, swift, zorry</td>
<td class="tableinfo">Hardened Gentoo project packages and policy</td>
</tr>
<tr>
<td class="tableinfo">selinux</td>
- <td class="tableinfo">blueness, pebenito</td>
+ <td class="tableinfo">blueness, pebenito, swift</td>
<td class="tableinfo">Gentoo's Security-Enhanced Linux (SELinux) packages</td>
</tr>
</table>
diff --git a/html/pax-quickstart.html b/html/pax-quickstart.html
index 7f88e0d..b55140f 100644
--- a/html/pax-quickstart.html
+++ b/html/pax-quickstart.html
@@ -256,7 +256,7 @@ to run. Often we find that we need the -m -sp combos.
A quickstart covering PaX and Hardened Gentoo.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:tseng@gentoo.org" class="altlink"><b>Brandon Hale</b></a>
+ <a href="mailto:brandon@inclusivetech.net" class="altlink"><b>Brandon Hale</b></a>
<br><i>Author</i><br><br>
<a href="mailto:blackace@gentoo.org" class="altlink"><b>Blackace</b></a>
<br><i>Editor</i><br><br>
diff --git a/html/pax-utils.html b/html/pax-utils.html
index 1bfdaae..264f52e 100644
--- a/html/pax-utils.html
+++ b/html/pax-utils.html
@@ -669,11 +669,11 @@ This guide provides instruction on securing your system by using the pax-utils
package to find and identify problematic binaries.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:swift@gentoo.org" class="altlink"><b>swift</b></a>
+ <a href="mailto:swift@gentoo.org" class="altlink"><b>Sven Vermeulen</b></a>
<br><i>Author</i><br><br>
- <a href="mailto:solar@gentoo.org" class="altlink"><b>solar</b></a>
+ <a href="mailto:solar@gentoo.org" class="altlink"><b>Ned Ludd</b></a>
<br><i>Editor</i><br><br>
- <a href="mailto:nightmorph@gentoo.org" class="altlink"><b>nightmorph</b></a>
+ <a href="mailto:nightmorph@gentoo.org" class="altlink"><b>Joshua Saddler</b></a>
<br><i>Editor</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/pic-fix-guide.html b/html/pic-fix-guide.html
index c27137d..eef91a5 100644
--- a/html/pic-fix-guide.html
+++ b/html/pic-fix-guide.html
@@ -858,7 +858,7 @@ mmx32_rgb888_mask dd 00ffffffh,00ffffffh
<br><i>Author</i><br><br>
<a href="mailto:pageexec@freemail.hu" class="altlink"><b>The PaX team</b></a>
<br><i>Contributor</i><br><br>
- <a href="mailto:kevquinn@gentoo.org" class="altlink"><b>Kevin F. Quinn</b></a>
+ <a href="mailto:g2@kevquinn.com" class="altlink"><b>Kevin F. Quinn</b></a>
<br><i>Contributor</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/pic-guide.html b/html/pic-guide.html
index 0b5fde9..8945abc 100644
--- a/html/pic-guide.html
+++ b/html/pic-guide.html
@@ -155,7 +155,7 @@ References:
<tr><td align="left" class="topsep"><p class="alttext">
<a href="mailto:solar@gentoo.org" class="altlink"><b>solar</b></a>
<br><i>Author</i><br><br>
- <a href="mailto:pappy@gentoo.org" class="altlink"><b>Alexander Gabert</b></a>
+ <a href="mailto:a.gabert@fh-trier.de" class="altlink"><b>Alexander Gabert</b></a>
<br><i>Editor</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/pic-internals.html b/html/pic-internals.html
index 2a8eb57..72fec94 100644
--- a/html/pic-internals.html
+++ b/html/pic-internals.html
@@ -225,7 +225,7 @@ These executables simply do not need the PIC addressing mode for their functions
<tr><td class="topsep" align="center"><p class="alttext">Updated February 14, 2004</p></td></tr>
<tr><td class="topsep" align="left"><p class="alttext"><b>Summary: </b>Understanding the impact of text relocations and explaining the use of PIC in shared libraries</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:pappy@gentoo.org" class="altlink"><b>Alexander Gabert</b></a>
+ <a href="mailto:a.gabert@fh-trier.de" class="altlink"><b>Alexander Gabert</b></a>
<br><i>Author</i><br><br>
<a href="mailto:solar@gentoo.org" class="altlink"><b>solar</b></a>
<br><i>Contributor</i><br><br>
diff --git a/html/pie-ssp.html b/html/pie-ssp.html
index 4009ff2..f9d7069 100644
--- a/html/pie-ssp.html
+++ b/html/pie-ssp.html
@@ -216,7 +216,7 @@ glibc-based SSP setup for userland in GNU/Linux for Gentoo-Linux at all!
<p class="chaphead"><a name="doc_chap6"></a><span class="chapnum">6.
</span>Using distcc with hgcc</p>
<p>
-<a href="mailto:lisa@gentoo.org">Lisa Marie Seelye</a> says you need the same hgcc and gcc versions on all distcc host volunteer machines.
+Lisa Marie Seelye says you need the same hgcc and gcc versions on all distcc host volunteer machines.
</p>
<p class="chaphead"><a name="doc_chap7"></a><span class="chapnum">7.
</span>Credits and Reference</p>
@@ -237,7 +237,7 @@ glibc-based SSP setup for userland in GNU/Linux for Gentoo-Linux at all!
<tr><td class="topsep" align="center"><p class="alttext">Updated November 27, 2010</p></td></tr>
<tr><td class="topsep" align="left"><p class="alttext"><b>Summary: </b>(This DOC is badly outdated and mostly obsolete) This introductionary guide explains the basic behaviour of the hardened toolchain.</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:pappy@gentoo.org" class="altlink"><b>Alexander Gabert</b></a>
+ <a href="mailto:a.gabert@fh-trier.de" class="altlink"><b>Alexander Gabert</b></a>
<br><i>Author</i><br><br>
<a href="mailto:solar@gentoo.org" class="altlink"><b>solar</b></a>
<br><i>Contributor</i><br></p></td></tr>
diff --git a/html/prelude-ids.html b/html/prelude-ids.html
index 65bd9ba..e1f0acc 100644
--- a/html/prelude-ids.html
+++ b/html/prelude-ids.html
@@ -603,7 +603,7 @@ $conf{'dbpasswd'}='dbpass';
<tr><td align="left" class="topsep"><p class="alttext"><a href="mailto:zack@tehunlose.com" class="altlink"><b>
Zack Gilburd</b></a>
<br><i>Author</i><br><br>
- <a href="mailto:mboman@gentoo.org" class="altlink"><b>Michael Boman</b></a>
+ <a href="mailto:michael.boman@gmail.com" class="altlink"><b>Michael Boman</b></a>
<br><i>Contributors</i><br><br>
<a href="mailto:kzaraska@student.uci.agh.edu.pl" class="altlink"><b>Krzysztof Zaraska</b></a>
<br><i>Contributors</i><br></p></td></tr>
diff --git a/html/primer.html b/html/primer.html
index 3d48453..598463b 100644
--- a/html/primer.html
+++ b/html/primer.html
@@ -251,9 +251,9 @@
<tr><td class="topsep" align="center"><p class="alttext">Updated February 7, 2007</p></td></tr>
<tr><td class="topsep" align="left"><p class="alttext"><b>Summary: </b>A Primer on Hardened Gentoo.</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:method@gentoo.org" class="altlink"><b>Joshua Brindle</b></a>
+ <a href="mailto:method@manicmethod.com" class="altlink"><b>Joshua Brindle</b></a>
<br><i>Author</i><br><br>
- <a href="mailto:tocharian@gentoo.org" class="altlink"><b>Adam Mondl</b></a>
+ Adam Mondl
<br><i>Contributor</i><br><br>
<a href="mailto:solar@gentoo.org" class="altlink"><b>Ned Ludd</b></a>
<br><i>Editor</i><br></p></td></tr>
diff --git a/html/roadmap.html b/html/roadmap.html
index 1760416..f12a2bd 100644
--- a/html/roadmap.html
+++ b/html/roadmap.html
@@ -317,17 +317,17 @@ A roadmap that plots current needs and goals of the
Hardened Gentoo project.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:tocharian@gentoo.org" class="altlink"><b>Adam Mondl</b></a>
+ Adam Mondl
<br><i>Author</i><br><br>
- <a href="mailto:tigger@gentoo.org" class="altlink"><b>Rob Holland</b></a>
+ Rob Holland
<br><i>Editor</i><br><br>
<a href="mailto:solar@gentoo.org" class="altlink"><b>Ned Ludd</b></a>
<br><i>Contributor</i><br><br>
<a href="mailto:pebenito@gentoo.org" class="altlink"><b>Chris PeBenito</b></a>
<br><i>Contributor</i><br><br>
- <a href="mailto:method@gentoo.org" class="altlink"><b>Joshua Brindle</b></a>
+ <a href="mailto:method@manicmethod.com" class="altlink"><b>Joshua Brindle</b></a>
<br><i>Contributor</i><br><br>
- <a href="mailto:kang@gentoo.org" class="altlink"><b>Guillaume Destuynder</b></a>
+ <a href="mailto:kang@insecure.ws" class="altlink"><b>Guillaume Destuynder</b></a>
<br><i>Contributor</i><br><br>
<a href="mailto:pappy@retired" class="altlink"><b>Alexander Gabert</b></a>
<br><i>Contributor</i><br><br>
diff --git a/html/rsbac/intro.html b/html/rsbac/intro.html
index c3dc5fe..b7ae327 100644
--- a/html/rsbac/intro.html
+++ b/html/rsbac/intro.html
@@ -93,7 +93,7 @@ access control system. </p></td></tr>
<br><i>Author</i><br><br>
<a href="mailto:albeiro@gentoo.pl" class="altlink"><b>Michal Purzynski</b></a>
<br><i>Editor</i><br><br>
- <a href="mailto:kang@gentoo.org" class="altlink"><b>Guillaume Destuynder</b></a>
+ <a href="mailto:kang@insecure.ws" class="altlink"><b>Guillaume Destuynder</b></a>
<br><i>Editor</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/rsbac/overview.html b/html/rsbac/overview.html
index 1cdc38d..e04a343 100644
--- a/html/rsbac/overview.html
+++ b/html/rsbac/overview.html
@@ -205,7 +205,7 @@ This document should give you an overview of RSBAC access control system.
<br><i>Author</i><br><br>
<a href="mailto:albeiro@gentoo.pl" class="altlink"><b>Michal Purzynski</b></a>
<br><i>Editor</i><br><br>
- <a href="mailto:kang@gentoo.org" class="altlink"><b>Guillaume Destuynder</b></a>
+ <a href="mailto:kang@insecure.ws" class="altlink"><b>Guillaume Destuynder</b></a>
<br><i>Editor</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/rsbac/quickstart.html b/html/rsbac/quickstart.html
index d03283a..f04955a 100644
--- a/html/rsbac/quickstart.html
+++ b/html/rsbac/quickstart.html
@@ -333,7 +333,7 @@ RSBAC on Gentoo Linux</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
<a href="mailto:albeiro@gentoo.pl" class="altlink"><b>Michal Purzynski</b></a>
<br><i>Author</i><br><br>
- <a href="mailto:kang@gentoo.org" class="altlink"><b>Guillaume Destuynder</b></a>
+ <a href="mailto:kang@insecure.ws" class="altlink"><b>Guillaume Destuynder</b></a>
<br><i>Editor</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/rsbac/transition.html b/html/rsbac/transition.html
index b921bd6..0d5395e 100644
--- a/html/rsbac/transition.html
+++ b/html/rsbac/transition.html
@@ -70,7 +70,7 @@ Transition from rsbac-sources to hardened-sources </h1>
<tr><td class="topsep" align="left"><p class="alttext"><b>Summary: </b> This document will help you transioning from
rsbac-sources to hardened-sources </p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
- <a href="mailto:kang@gentoo.org" class="altlink"><b>Guillaume Destuynder</b></a>
+ <a href="mailto:kang@insecure.ws" class="altlink"><b>Guillaume Destuynder</b></a>
<br><i>Author</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.
diff --git a/html/selinux-faq.html b/html/selinux-faq.html
index e9c8608..ea9f968 100644
--- a/html/selinux-faq.html
+++ b/html/selinux-faq.html
@@ -79,6 +79,7 @@ as well.
Cron fails to load in root's crontab with message '(root) ENTRYPOINT
FAILED (crontabs/root)'
</a></li>
+<li><a href="#missingdatum">When querying the policy, I get 'ERROR: could not find datum for type ...'</a></li>
</ul>
<p class="chaphead"><a name="doc_chap2"></a><span class="chapnum">2.
</span>General SELinux Support Questions</p>
@@ -504,11 +505,62 @@ To fix this, change the user of the file to root:
Another fix would be to disable UBAC completely. This is accomplished with
<span class="code" dir="ltr">USE="-ubac"</span>.
</p>
+<p class="secthead"><a name="missingdatum"></a><a name="doc_chap5_sect7">When querying the policy, I get 'ERROR: could not find datum for type ...'</a></p>
+<p>
+When using <span class="code" dir="ltr">seinfo</span> or <span class="code" dir="ltr">sesearch</span> to query the policy on the system,
+you get errors similar to:
+</p>
+<a name="doc_chap5_pre10"></a><table class="ntable" width="100%" cellspacing="0" cellpadding="0" border="0">
+<tr><td bgcolor="#7a5ada"><p class="codetitle">Code Listing5.10: Triggering the 'could not find datum' error</p></td></tr>
+<tr><td bgcolor="#eeeeff" align="left" dir="ltr"><pre>
+~# <span class="code-input">seinfo -tasterisk_t</span>
+ERROR: could not find datum for type asterisk_t
+</pre></td></tr>
+</table>
+<p>
+This is most likely because your tools are using a newer binary policy to
+enforce policy, but an older binary for querying. You can verify if this is the
+case by listing the last modification time on the files:
+</p>
+<a name="doc_chap5_pre11"></a><table class="ntable" width="100%" cellspacing="0" cellpadding="0" border="0">
+<tr><td bgcolor="#7a5ada"><p class="codetitle">Code Listing5.11: Checking last modification time of the policy files</p></td></tr>
+<tr><td bgcolor="#eeeeff" align="left" dir="ltr"><pre>
+~# <span class="code-input">ls -ltr /etc/selinux/strict/policy/policy.*</span>
+</pre></td></tr>
+</table>
+<p>
+The file modified last should be the same one as returned by checking
+<span class="path" dir="ltr">/selinux/policyvers</span>:
+</p>
+<a name="doc_chap5_pre12"></a><table class="ntable" width="100%" cellspacing="0" cellpadding="0" border="0">
+<tr><td bgcolor="#7a5ada"><p class="codetitle">Code Listing5.12: Checking the runtime policy version</p></td></tr>
+<tr><td bgcolor="#eeeeff" align="left" dir="ltr"><pre>
+~# <span class="code-input">cat /selinux/policyvers; echo</span>
+24
+</pre></td></tr>
+</table>
+<p>
+If this is not the case (which is very likely since you are reading this FAQ
+entry) then try forcing the utilities policy version to the correct version:
+</p>
+<a name="doc_chap5_pre13"></a><table class="ntable" width="100%" cellspacing="0" cellpadding="0" border="0">
+<tr><td bgcolor="#7a5ada"><p class="codetitle">Code Listing5.13: Editing semanage.conf</p></td></tr>
+<tr><td bgcolor="#eeeeff" align="left" dir="ltr"><pre>
+~# <span class="code-input">vim /etc/selinux/semanage.conf</span>
+<span class="code-comment"># Look for and uncomment the policy-version line and set it to the right version</span>
+policy-version = <span class="code-input">24</span>
+</pre></td></tr>
+</table>
+<table class="ncontent" width="100%" border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#ffffbb"><p class="note"><b>Important: </b>
+If your system is upgrading its kernel, higher version(s) can be supported. In
+this case, either unset the value again to automatically "jump" to a higher
+version, or force set it to the higher version.
+</p></td></tr></table>
<br><br>
</td>
<td width="1%" bgcolor="#dddaec" valign="top"><table border="0" cellspacing="4px" cellpadding="4px">
<tr><td class="topsep" align="center"><p class="altmenu"><a title="View a printer-friendly version" class="altlink" href="selinux-faq.xml?style=printable">Print</a></p></td></tr>
-<tr><td class="topsep" align="center"><p class="alttext">Updated August 10, 2011</p></td></tr>
+<tr><td class="topsep" align="center"><p class="alttext">Updated August 22, 2011</p></td></tr>
<tr><td class="topsep" align="left"><p class="alttext"><b>Summary: </b>
Frequently Asked Questions on SELinux integration with Gentoo Hardened.
The FAQ is a collection of solutions found on IRC, mailinglist, forums or
diff --git a/html/selinux/index.html b/html/selinux/index.html
index d8a0c2c..a51aad4 100644
--- a/html/selinux/index.html
+++ b/html/selinux/index.html
@@ -85,12 +85,17 @@ As a result, we
<td class="infohead"><b>Role</b></td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">pebenito</td>
<td class="tableinfo">Lead ( Policy, x86, AMD64 )</td>
</tr>
<tr>
- <td class="tableinfo"></td>
+ <td class="tableinfo">Sven Vermeulen</td>
+ <td class="tableinfo">swift</td>
+ <td class="tableinfo">Documentation, Userspace tools, Policy development</td>
+ </tr>
+ <tr>
+ <td class="tableinfo">Anthony G. Basile</td>
<td class="tableinfo">blueness</td>
<td class="tableinfo">Policy development, Proxy (non developer contributors)</td>
</tr>
@@ -114,11 +119,6 @@ The following people, although non-developer, are actively contributing to the p
<td class="tableinfo">gizmo</td>
<td class="tableinfo">Policy development, support</td>
</tr>
-<tr>
-<td class="tableinfo">Sven Vermeulen</td>
-<td class="tableinfo">SwifT</td>
-<td class="tableinfo">Documentation writing, policy development, support</td>
-</tr>
</table>
<p class="chaphead"><a name="doc_chap5"></a><span class="chapnum">5.
</span>Subprojects</p>
@@ -133,7 +133,7 @@ The following people, although non-developer, are actively contributing to the p
</tr>
<tr>
<td class="tableinfo">Policy</td>
- <td class="tableinfo">pebenito</td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">
Develop and maintain a secure, default set of policies for the system, including
user and role definitions, service policies and application policies.
@@ -141,7 +141,7 @@ user and role definitions, service policies and application policies.
</tr>
<tr>
<td class="tableinfo">Userland</td>
- <td class="tableinfo">pebenito</td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">
Develop and maintain the packages for SELinux userland utilities and libraries,
including SELinux-aware patches for more general applications and libraries.
@@ -149,7 +149,7 @@ including SELinux-aware patches for more general applications and libraries.
</tr>
<tr>
<td class="tableinfo">Kernel</td>
- <td class="tableinfo">pebenito</td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">
Integrate, improve and maintain SELinux patches in the Linux kernel for Gentoo
Hardened.
@@ -157,7 +157,7 @@ Hardened.
</tr>
<tr>
<td class="tableinfo">Documentation</td>
- <td class="tableinfo">pebenito</td>
+ <td class="tableinfo">Chris PeBenito</td>
<td class="tableinfo">
Develop and maintain SELinux documentation specific to the Gentoo distribution
</td>
diff --git a/html/selinux/modules/cron.html b/html/selinux/modules/cron.html
index 14f4f94..ce468f5 100644
--- a/html/selinux/modules/cron.html
+++ b/html/selinux/modules/cron.html
@@ -358,11 +358,15 @@ seuser: system_u, level (null)
Context 0 system_u:system_r:system_cronjob_t
<span class="code-comment"># Get the domain under which user-level jobs will run</span>
-~# <span class="code-input">getseuser user_u system_u:system_r:crond_t</span>
+~# <span class="code-input">getseuser john system_u:system_r:crond_t</span>
seuser: user_u, level (null)
Context 0 user_u:user_r:cronjob_t
</pre></td></tr>
</table>
+<table class="ncontent" width="100%" border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#bbffbb"><p class="note"><b>Note: </b>
+The <span class="code" dir="ltr">getseuser</span> command usually takes a Unix account name for the first
+argument, but treats <span class="code" dir="ltr">system_u</span> as a special case.
+</p></td></tr></table>
<br><p class="copyright">
The contents of this document, unless otherwise expressly stated, are licensed under the <a href="http://creativecommons.org/licenses/by-sa/2.5">CC-BY-SA-2.5</a> license. The <a href="http://www.gentoo.org/main/en/name-logo.xml"> Gentoo Name and Logo Usage Guidelines </a> apply.
</p>
@@ -382,7 +386,7 @@ Context 0 user_u:user_r:cronjob_t
</td>
<td width="1%" bgcolor="#dddaec" valign="top"><table border="0" cellspacing="4px" cellpadding="4px">
<tr><td class="topsep" align="center"><p class="altmenu"><a title="View a printer-friendly version" class="altlink" href="selinux/modules/cron.xml?style=printable">Print</a></p></td></tr>
-<tr><td class="topsep" align="center"><p class="alttext">Updated July 23, 2011</p></td></tr>
+<tr><td class="topsep" align="center"><p class="alttext">Updated August 13, 2011</p></td></tr>
<tr><td class="topsep" align="left"><p class="alttext"><b>Summary: </b>
Within SELinux, the cron module is responsible for defining the scheduling
domains and interactions.
diff --git a/html/toolchain-upgrade-guide.html b/html/toolchain-upgrade-guide.html
index 872ea00..ad0e75b 100644
--- a/html/toolchain-upgrade-guide.html
+++ b/html/toolchain-upgrade-guide.html
@@ -260,7 +260,7 @@ Technical Description of the Gentoo Hardened Toolchain</a></li>
Guide for upgrading from hardened gcc-3/glibc-2.3/binutils-2.16 to gcc-4/glibc-2.5/binutils-2.17.
</p></td></tr>
<tr><td align="left" class="topsep"><p class="alttext">
-<a href="mailto:kevquinn@gentoo.org" class="altlink"><b>Kevin F. Quinn</b></a>
+<a href="mailto:g2@kevquinn.com" class="altlink"><b>Kevin F. Quinn</b></a>
<br><i>Author</i><br></p></td></tr>
<tr lang="en"><td align="center" class="topsep">
<p class="alttext"><b>Donate</b> to support our development efforts.