[yocto] how to "harden" a freescale yocto-produced OS?
Robert P. J. Day
rpjday at crashcourse.ca
Tue Jun 16 12:01:55 PDT 2015
i'm mailing to both lists since, while this question relates
specifically to the freescale SDK, i suspect others on the general
yocto list might have some opinions.
an acquaintance asks if there is a way to security harden an OS
produced by the freescale v1.7 linux sdk, which i'm assuming is the
one available here:
http://www.freescale.com/webapp/sps/site/prod_summary.jsp?code=SDKLINUX
so, other than the obvious technique of manually crawling over the
build configuration and locking things down, is there in fact a
recommended approach for locking down a yocto build, either in general
or perhaps specifically for the freescale SDK?
rday
p.s. i'm aware of the meta-security layer, although i've never taken a
close look at it. maybe now is the time.
--
========================================================================
Robert P. J. Day Ottawa, Ontario, CANADA
http://crashcourse.ca
Twitter: http://twitter.com/rpjday
LinkedIn: http://ca.linkedin.com/in/rpjday
========================================================================
More information about the yocto
mailing list