PackagesActivate default security enhancements for toolchain (gcc, glibc, binutils)
| Package | “hardened” Flag Description |
|---|---|
| app-emulation/virtualbox-kvm | Enable hardening and install binaries SUID |
| dev-libs/mimalloc | Enable exploit mitigations |
| sci-libs/libqalculate | Disable unsafe functions like 'command' and variables like 'uptime'. |
| sys-kernel/gentoo-kernel | Use selection of hardening options recommended by Kernel Self Protection Project |