[meta-freescale] how to "harden" a freescale yocto-produced OS?

Robert P. J. Day rpjday at crashcourse.ca
Tue Jun 16 12:01:55 PDT 2015

  i'm mailing to both lists since, while this question relates
specifically to the freescale SDK, i suspect others on the general
yocto list might have some opinions.

  an acquaintance asks if there is a way to security harden an OS
produced by the freescale v1.7 linux sdk, which i'm assuming is the
one available here:


so, other than the obvious technique of manually crawling over the
build configuration and locking things down, is there in fact a
recommended approach for locking down a yocto build, either in general
or perhaps specifically for the freescale SDK?


p.s. i'm aware of the meta-security layer, although i've never taken a
close look at it. maybe now is the time.


Robert P. J. Day                                 Ottawa, Ontario, CANADA

Twitter:                                       http://twitter.com/rpjday
LinkedIn:                               http://ca.linkedin.com/in/rpjday

More information about the meta-freescale mailing list