Corbin Bird <corbinbird <at> charter.net> writes: >
> >> Ideally, there would be a gentoo-based hardened router for sale > Take a spare desktop system, strip / rebuild / reconfigure it as a > single purpose system. > Lots of card slots and memory are very good to have for this system. > It works, but can be a pain space and time wise. ( Firewall / DHCP > Server / Router ). > I have done this twice for relatives. Hmmmm. I was thinking the full hardened protocol:: grsecurity:: https://wiki.gentoo.org/wiki/Hardened/Grsecurity2_Quickstart (there is acutally quite todo on this effort). ssp, vpn-encryption engine, etc etc. > http://www.ipcop.org/ Although security conscience, I see no evidence/detail as to how this firewall ipcop distro is hardened; that why ideally, I'd like it to be based on gentoo. Furthermore, infrequent releases does not suggest they are on top of all security isses, ymmv. The closest I've found is (2) workstations offerings by blueness:: tin-hat and lilblue. And those are not tuned to be 'routers' but could be, with hardened expertise at the keyboard. As you add codes to a hardened system, things can become challenging..... hence the desire for a gentoo-hardened-router vendor, or guide. James
