Month after I installed grsecurity-enabled kernel (sys-kernel/gentoo-sources-2.4.26-r9), I found I'm missing tools for grsecurity. Not only they aren't installed automatically by grsecurity enabled kernel depends on them, also no grsecurity virtual ebuild or other way to know correct name for this tools is gradm, except found grsecurity home page. Reproducible: Always Steps to Reproduce: 1. emerge gentoo-sources Portage 2.0.51-r2 (default-linux/x86/2004.0, gcc-3.3.2, glibc-2.3.4.20040808-r1, 2.4.26-gentoo-r9 i686) ================================================================= System uname: 2.4.26-gentoo-r9 i686 AMD Duron(tm) Processor Gentoo Base System version 1.4.16 distcc 2.16 i686-pc-linux-gnu (protocols 1 and 2) (default port 3632) [enabled] Autoconf: sys-devel/autoconf-2.59-r4 Automake: sys-devel/automake-1.8.5-r1 Binutils: sys-devel/binutils-2.14.90.0.8-r1 Headers: sys-kernel/linux-headers-2.4.21 Libtools: sys-devel/libtool-1.4.3-r4 ACCEPT_KEYWORDS="x86" AUTOCLEAN="yes" CFLAGS="-O2 -mcpu=athlon -march=i686 -fomit-frame-pointer -pipe" CHOST="i686-pc-linux-gnu" COMPILER="" CONFIG_PROTECT="/etc /usr/X11R6/lib/X11/xkb /usr/kde/2/share/config /usr/kde/3.2/share/config /usr/kde/3/share/config /usr/lib/mozilla/defaults/pref /usr/share/config /usr/share/texmf/dvipdfm/config/ /usr/share/texmf/dvips/config/ /usr/share/texmf/tex/generic/config/ /usr/share/texmf/tex/platex/config/ /usr/share/texmf/xdvi/ /var/bind /var/qmail/control" CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d" CXXFLAGS="-O2 -mcpu=athlon -march=i686 -fomit-frame-pointer -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="autoaddcvs ccache distcc distlocks sandbox sfperms" GENTOO_MIRRORS="http://ftp.sh.cvut.cz/MIRRORS/gentoo/gentoo/ http://www.mirror.ac.uk/sites/www.ibiblio.org/gentoo/ http://gentoo.oregonstate.edu http://www.ibiblio.org/pub/Linux/distributions/gentoo" MAKEOPTS="-j4" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/mnt/hda04/gentoo-var-tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/usr/local/portage" SYNC="rsync://rsync.europe.gentoo.org/gentoo-portage" USE="3dnow 3dnowex X Xaw3d aalib apache2 apm arts avi berkdb bitmap-fonts caps cdr crypt cups curl dga divx4linux doc dvd encode erandom esd f77 flac foomaticdb gcj gd gdbm gif gpm gtk gtk2 imagemagick imlib innodb ipv6 java jpeg lcms lesstif libcaca libg++ libwww live lzo mad mbox mcal memlimit mikmod mmx mng motif mozilla mpeg mysql ncurses network nls oggvorbis opengl oss pam pdflib perl pic png python qt quicktime readline samba sdl slang snmp spell sqlite sse ssl svga tcltk tcpd tetex theora tiff truetype unicode usb userlocales vhosts videos wmf x86 xml xml2 xmms xosd xv xvid zlib"
At least gradm depend on chpax. If not, it will be another quest to find this ebuild name ...
Unless, of course, you were to read the "Gentoo grsecurity v2 guide" on www.gentoo.org (hint hint) http://www.gentoo.org/proj/en/hardened/grsecurity2.xml
Link to which, I assume, is on http://www.gentoo.org/doc/en/index.xml#doc_chap6 ... wait. Is not. Is there any other way to get this document that open bug, complain and get link from you ?
There isn't enough room to list all docs on one page. You are expected to follow the security link and you'll find info on there, plus a link to hardened gentoo. If this isn't clear enough, please suggest a better doc organisation to the docs team :)
