Yesterday (and this night) I successfully converted my system to a Gentoo Hardened system. In my case, this currently means that PaX has been enabled and I am currently running the system (which is an x86_64 laptop) with SELinux in permissive mode (so it won't enforce the policies yet, but report violations so I can see in my logs if enforcement is possible or not). The permissive mode will be on for quite some time I would assume, as getting SELinux active on the system involved quite a few \~amd64 packages and I'm not too fond of using that branch (I'm more of a stability guy).