[Klug-general] Re: Apache, PHP and MySQL security

Matthew Macdonald-Wallace matthew at truthisfreedom.org.uk
Sat Jan 6 15:02:01 GMT 2007


On Sat, 2007-01-06 at 12:25 +0000, Stuart Brand wrote:
> "as I understand it, this means that you would need
> significant
> down-time everytime you upgraded anything."
> 
> if you are recompiling from source there shouldn't be any down time? apart
> from when you install it and restart the service.

/me blushes.... 

Good point, I should have thought of that...

> 
> if you are worried about security and compatibility then why not use a
> mainstream distro like suse?

I've been using Gentoo for the last five or so years and have recently
switched to Ubuntu to see what the fuss is all about (!) - I don't want
to loose my knowledge of compiling from source, and I also believe that
software cannot be trusted to run the way you want it to unless you have
set the compile and performance flags yourself. Unfortunately, I don't
know enough about which flags to set when compiling for security, hence
the original post.

I am aware that I could just set gentoo to install hardend versions of
everything, however I wouldn't learn as much that way!

Regards,

Matt



More information about the Kent mailing list