From aed97a8ae3a0072066f6751e058e07707ab1ab43 Mon Sep 17 00:00:00 2001
From: Fabio Erculiani <lxnay@sabayon.org>
Date: Thu, 19 Apr 2012 19:20:29 +0200
Subject: [PATCH] [intel/portage] enable hardened flags for base system pkgs

---
 conf/intel/portage/package.env.amd64 | 26 ++++++++++++++++++++++++++
 conf/intel/portage/package.env.x86   | 26 ++++++++++++++++++++++++++
 2 files changed, 52 insertions(+)

diff --git a/conf/intel/portage/package.env.amd64 b/conf/intel/portage/package.env.amd64
index 516eb6a..34aa062 100644
--- a/conf/intel/portage/package.env.amd64
+++ b/conf/intel/portage/package.env.amd64
@@ -20,8 +20,34 @@ dev-util/nvidia-cuda-sdk nographite.amd64.conf
 dev-util/nvidia-cuda-toolkit nographite.amd64.conf
 
 # Enable hardening
+app-admin/sudo hardened.conf
+app-arch/bzip2 hardened.conf
+app-arch/gzip hardened.conf
+app-arch/tar hardened.conf
+app-arch/xz-utils hardened.conf
+app-shells/bash hardened.conf
 net-misc/iputils hardened.conf
+net-misc/rsync hardened.conf
+net-misc/wget hardened.conf
 sys-apps/coreutils hardened.conf
+sys-apps/diffutils hardened.conf
+sys-apps/file hardened.conf
+sys-apps/findutils hardened.conf
+sys-apps/gawk hardened.conf
+sys-apps/grep hardened.conf
+sys-apps/kbd hardened.conf
+sys-apps/less hardened.conf
 sys-apps/net-tools hardened.conf
+sys-apps/sed hardened.conf
+sys-apps/shadow hardened.conf
+sys-apps/texinfo hardened.conf
+sys-apps/which hardened.conf
 sys-devel/binutils hardened.conf
+sys-devel/gcc hardened.conf
+sys-devel/gnuconfig hardened.conf
+sys-devel/make hardened.conf
+sys-devel/patch hardened.conf
+sys-fs/e2fsprogs hardened.conf
 sys-libs/glibc hardened.conf
+sys-process/procps hardened.conf
+sys-process/psmisc hardened.conf
diff --git a/conf/intel/portage/package.env.x86 b/conf/intel/portage/package.env.x86
index 2e205ed..bc2d0c0 100644
--- a/conf/intel/portage/package.env.x86
+++ b/conf/intel/portage/package.env.x86
@@ -21,8 +21,34 @@ dev-util/nvidia-cuda-sdk nographite.x86.conf
 dev-util/nvidia-cuda-toolkit nographite.x86.conf
 
 # Enable hardening
+app-admin/sudo hardened.conf
+app-arch/bzip2 hardened.conf
+app-arch/gzip hardened.conf
+app-arch/tar hardened.conf
+app-arch/xz-utils hardened.conf
+app-shells/bash hardened.conf
 net-misc/iputils hardened.conf
+net-misc/rsync hardened.conf
+net-misc/wget hardened.conf
 sys-apps/coreutils hardened.conf
+sys-apps/diffutils hardened.conf
+sys-apps/file hardened.conf
+sys-apps/findutils hardened.conf
+sys-apps/gawk hardened.conf
+sys-apps/grep hardened.conf
+sys-apps/kbd hardened.conf
+sys-apps/less hardened.conf
 sys-apps/net-tools hardened.conf
+sys-apps/sed hardened.conf
+sys-apps/shadow hardened.conf
+sys-apps/texinfo hardened.conf
+sys-apps/which hardened.conf
 sys-devel/binutils hardened.conf
+sys-devel/gcc hardened.conf
+sys-devel/gnuconfig hardened.conf
+sys-devel/make hardened.conf
+sys-devel/patch hardened.conf
+sys-fs/e2fsprogs hardened.conf
 sys-libs/glibc hardened.conf
+sys-process/procps hardened.conf
+sys-process/psmisc hardened.conf