All three features should be mature enough to be enabled by default.
CGroups provide better tracking for ebuild processes, while the two
sandboxes improve security through restricting IPC network access for
build-only phases.
All the features degrade gracefully when the relevant kernel features
On Mon, Apr 6, 2015 at 8:02 AM, Martin Vaeth mar...@mvath.de wrote:
My suggestion is something in between - less invasive
(and, in particular, less time consuming)
than your suggestion to recalculate the USE-settings
with every emerge, but more automatic than the current state.
Keep in mind
Rich Freeman ri...@gentoo.org wrote:
On Sun, Apr 5, 2015 at 11:47 AM, Martin Vaeth mar...@mvath.de wrote:
One suggestion around this problem would be to use different
directories for these two types of use-flags, say
package.use and package.use.needed.
I still think we need a better
