From owner-freebsd-questions@freebsd.org Sat Oct 24 00:09:51 2015 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D2D6CA1D499 for ; Sat, 24 Oct 2015 00:09:51 +0000 (UTC) (envelope-from erichsfreebsdlist@alogt.com) Received: from alogt.com (alogt.com [69.36.191.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id ADE61121D for ; Sat, 24 Oct 2015 00:09:51 +0000 (UTC) (envelope-from erichsfreebsdlist@alogt.com) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=alogt.com; s=default; h=Content-Transfer-Encoding:Content-Type:MIME-Version:References: In-Reply-To:Message-ID:Subject:Cc:To:From:Date; bh=znbem1NpSo/bE61SFCu/k9wvPdEC1iYaIShWTk6dqMg=; b=Zcaek8OP2EgRqZF1PF/DxGpbJj PKOnhgnHASYuUh7HkWGyJwCC2pA3ujqKXYxoaom9ezDXT//MuJWE5nUomIj0QCu4gdkMkmQgLQCuU IlWEwF1ycZeagzy3NqaCeRcpBHI8cpMXcIGXc/ZHuN4s4fXiHgOT7IL3LP2lrXxXC8+8=; Received: from [114.121.133.234] (port=53026 helo=X220.alogt.com) by sl-508-2.slc.westdc.net with esmtpsa (TLSv1.2:AES128-GCM-SHA256:128) (Exim 4.86) (envelope-from ) id 1ZpmP2-003oLB-GC; Fri, 23 Oct 2015 18:09:45 -0600 Date: Sat, 24 Oct 2015 08:09:36 +0800 From: Erich Dollansky To: "O. Hartmann" Cc: "Michael B. Eichorn" , freebsd-questions Subject: Re: replace uname -a informational string Message-ID: <20151024080936.0ff26783@X220.alogt.com> In-Reply-To: <20151023225424.49220466.ohartman@zedat.fu-berlin.de> References: <20151023090805.5484ce9b@freyja.zeit4.iv.bundesimmobilien.de> <1445622325.1169.29.camel@michaeleichorn.com> <20151023225424.49220466.ohartman@zedat.fu-berlin.de> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - sl-508-2.slc.westdc.net X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - alogt.com X-Get-Message-Sender-Via: sl-508-2.slc.westdc.net: authenticated_id: erichsfreebsdlist@alogt.com X-Authenticated-Sender: sl-508-2.slc.westdc.net: erichsfreebsdlist@alogt.com X-Source: X-Source-Args: X-Source-Dir: X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 Oct 2015 00:09:51 -0000 Hi, On Fri, 23 Oct 2015 22:54:24 +0200 "O. Hartmann" wrote: > Am Fri, 23 Oct 2015 13:45:25 -0400 > "Michael B. Eichorn" schrieb: > > > First of all: Thank you very much for your concerns and answers. > > > On Fri, 2015-10-23 at 09:08 +0200, O. Hartmann wrote: > > > For security purposes, I need to replace the informations given by > > > "uname -a" > > > to hode the kernel build system, name et cetera. > > > > I presume you intendend 'hide' here? > > > > If you want to scrub a binaries of _all_ information about the > > building system this is a problem Debian is actively working on > > called 'reproducible builds' but is not possible today. > > > > https://reproducible.debian.net > > > > If you want to hide the hostname, why not just build with a > > different hostname set? > > Because it is not only the hostname, uname reveals the target host, > date and OS version. > > In our case, the image ist built on a dedicated host for a security > appliabce based on NanoBSD and I'd like to hide the OS type, the OS > name, the build box' name and the build date. > why not replace uname at the source level then? Erich