[meta-freescale] how to "harden" a freescale yocto-produced OS?
Robert P. J. Day
rpjday at crashcourse.ca
Tue Jun 16 12:01:55 PDT 2015
i'm mailing to both lists since, while this question relates
specifically to the freescale SDK, i suspect others on the general
yocto list might have some opinions.
an acquaintance asks if there is a way to security harden an OS
produced by the freescale v1.7 linux sdk, which i'm assuming is the
one available here:
so, other than the obvious technique of manually crawling over the
build configuration and locking things down, is there in fact a
recommended approach for locking down a yocto build, either in general
or perhaps specifically for the freescale SDK?
p.s. i'm aware of the meta-security layer, although i've never taken a
close look at it. maybe now is the time.
Robert P. J. Day Ottawa, Ontario, CANADA
More information about the meta-freescale