Skip to content

allan-gounden/Project-Pen-Too

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits

etc

etc

 
 

grubANDkernel

grubANDkernel

 
 

usr/include

usr/include

 
 

var/db/repos/local/profiles

var/db/repos/local/profiles

 
 

README-German.md

README-German.md

 
 

README.md

README.md

 
 

Repository files navigation

Project Pen Too

Profile 42 - Don't Panic!

Gentoo for everyone!


  1. Introduction
  2. Features
  3. Installation
  4. TODO
  5. Credits
  6. Jokes

Introduction

The aim of this project is to provide a secure, easy-to-use, reliable Linux based desktop operating system for everyone. I.e. an image which can be written directly to a data medium, where all applications for daily work are pre-installed and which can be used every day. Which belongs to you. That you can use and modify as needed and according to your own wishes.
ATTENTION: The project is in early Alpha/Proof-Of-Concept phase. Certainly there are still some things that can be done differently and better. I have the suspicion that due to the features of this project many existing exploits do not work and as soon as the browser runs in a VM (see TODO) you should be well armed against malware. Nothing is 100% secure. Since I was brainwashed and my memories were taken from me (https://www.facebook.com/story.php?story_fbid=442622294748430&id=100070019901989), I am trying to implement this to the best of my knowledge and belief. Certainly there are many people who could do this better than me. I would be very happy about help, hints and feedback. I suspect/hope that in a few years you can use GrapheneOS (https://grapheneos.com) for everything. But this will certainly take a few more years (https://www.facebook.com/story.php?story_fbid=446825460994780&id=100070019901989)

There are a lot of people who have paranoia. If it is with reason or without does not make a difference. This project might help those people in need to have trust in a secure and reliable operating system that they can use daily.
Having a secure operating system is one of the pillars for having secure communications.

Features

Musl, compiled with CLANG und hardened flags with support for CET and hardware shadow stack, LLVM libc++, GCC as Fallback, Firejail, Apparmor, hardened Kernel, minimal KDE, Application for your daily work pre-installed

Installation

  • Follow the Gentoo installation instructions but use the following tarball: stage3-amd64-musl-hardened-*.tar.xz
  • Install LLVM
  • Then copy the Project Pen Too files into your root directory and select the "42-dontPanic" profile (Caution: you hereby accept the binary redistributable license!)
  • Run a world update (emerge -av --update --deep --with-bdeps=y --newuse @world)
  • Create your own kernel configuration or use the Gentoo kernel. You can use my kernel configuration (Asus GA502 - AMD Ryzen 4800HS) as a basis and expand it with your hardware.

I can't currently provide any images or binary distributions because I have to assume that my hardware is compromised (https://www.facebook.com/story.php?story_fbid=494203459590313&id=100070019901989). But I could send my tarball on request.

TODO

  • Hardened Malloc
  • Kernel-Config
  • Apparmor-Profile
  • WIFI
  • Browser in seperate VM (Qemu/KVM)
  • CleanUp profile, patches, etc.
  • create Gentoo-Overlay
  • Fix KDE-Powermanager
  • Fix KDE Logout-Screen
  • Luks encryption by default
  • Yubikey integration (unlock luks, udev rule for locking/shutdown PC when Yubikey is unplugged)
  • Write patches for the packages which still require GCC for compiling
  • recheck which packages are really required
  • a lot more

Credits

Thanks to everyone working on Gentoo, Linux and BSD. These people have been doing the work for decades from which we are now reaping the rewards.
This project has no connection to Pentoo Linux (https://pentoo.ch)

Jokes

  • The future is now - Scientists are saying the future is going to be far more futuristic than they originaly predicted (https://www.youtube.com/watch?v=lA5bLLjDNsk)
  • @Linus Torvalds since I'm using your kernel please don't hack me. I'm sure you still have a few aces up your sleeve :)
  • No SELinux! Who wants an NSA security enhanced Linux? I don't want the NSA in my Linux :)
  • 03.05.2023 (German date format) -> 0 + 5 + 0 - 3 - 2 + 0 + 23 = 23!!! (https://www.facebook.com/story.php?story_fbid=438210161856310&id=100070019901989)
  • *tinfoil hat on* Maybe compile LLVM again after copying the files. So it compiles itself first? https://m.youtube.com/watch?v=6WxJECOFg8w

    Maybe if more people would use the KISS principle, there would be more LOVE in the world? And because there is more LOVE there would be less EVIL? 🤣

    Do not forget LOVE is the ultimate weapon!

    THE SYSTEM does not use the KISS principle. It is just one big clusterfuck. You can not divide its problems into different categories if you want to change something. You have to change the whole at once and because it does not use the KISS principle it is not that hard to hack 😉 But a lot of people are required. Hackers unite.

    Use your brain and heart. In balance.

    https://en.m.wikipedia.org/wiki/KISS_principle

We won't let our sense of humor get taken away from us

About

Profile 42 - Don't panic - Gentoo for everyone!

Resources

Readme
Activity

Stars

3 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages