Re: Why is Debian not secure by default?

To: debian-user@lists.debian.org
Subject: Re: Why is Debian not secure by default?
From: Sven Joachim <svenjoac@gmx.de>
Date: Sun, 23 Jan 2011 09:04:32 +0100
Message-id: <[🔎] 87mxmsnizz.fsf@turtle.gmx.de>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20110123072917.6f210f96.coolzone@it.dk> (Rico Secada's message of "Sun, 23 Jan 2011 07:29:17 +0100")
References: <[🔎] 20110123072917.6f210f96.coolzone@it.dk>

On 2011-01-23 07:29 +0100, Rico Secada wrote:

> After having brushed up on some technical aspects of security I would
> like to understand why Debian isn't secure be default.
>
> As we all know a lot of security breaches occur because of overflow
> errors. Difference protective measurements has been developed for
> example such as "executable space protection".
>
> As seen in this list of comparison both Fedora and SUSE are running
> with some method of protection enabled by default whereas Debian isn't.
>
> http://en.wikipedia.org/wiki/Comparison_of_Linux_distributions#Security_features
>
> Another example is "stack checking" in GCC where for example OpenBSD
> ships with this setting as "enabled-by-default" whereas it is
> "off-by-default" on Debian.
>
> I would like to understand why Debian is running with this policy of
> "security is off by default"?

Basically because the developers cannot agree where the hardened
compiler options should be implemented.  You can get more information by
reading http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=552688.

Sven

Reply to:

Follow-Ups:
- Re: Why is Debian not secure by default?
  - From: "Robert Blair Mason Jr." <rbmj@verizon.net>

References:
- Why is Debian not secure by default?
  - From: Rico Secada <coolzone@it.dk>

Prev by Date: no popup window with kdialog
Next by Date: Re: no popup window with kdialog
Previous by thread: Why is Debian not secure by default?
Next by thread: Re: Why is Debian not secure by default?
Index(es):
- Date
- Thread