Hello list, The recent discussion of hardening Gentoo prompted me to have a go at hardening this workstation. I followed the wiki[1] but when I got to emerge -e world I got scores of slot conflicts, maybe hundreds. So I backed off and restored the original system.
Now I'm tackling a smaller box, following the same wiki, for which this machine is a compile host with a chroot containing the client's NFS-exported $PORTDIR. I have a question. The chroot and everything in it uses the host's kernel, which is not hardened. If I emerge -e world in the chroot, can I then use the resulting packages to install on the client? I suspect there will be subtle differences (or not so subtle) that prevent me from doing this. That would be a pity, because recompiling everything on the client, a quad- core Celeron N3150 at 1.8GHz, is likely to take a day or two. [1] https://wiki.gentoo.org/wiki/Hardened_Gentoo -- Regards Peter
