Bug#552688: For real!?

To: 552688@bugs.debian.org
Subject: Bug#552688: For real!?
From: Rico Secada <coolzone@it.dk>
Date: Sun, 23 Jan 2011 22:27:45 +0100
Message-id: <[🔎] 20110123222745.69683cfa.coolzone@it.dk>
Mail-followup-to: debian-ctte@lists.debian.org
Reply-to: Rico Secada <coolzone@it.dk>, 552688@bugs.debian.org

> I don't have the resources to maintain that patch in Debian, 
> and in Ubuntu it did take more than twelve months to even get the
> testsuite fixes.

Matthias if you wont do the job right, just don't! You are not
maintaining something when you are not doing it right! 

Please step down and let someone else take over! Debian needs to be
secure by default!

Ubuntu has been running with hardening patches for more than about four
years now. Both Fedora and SUSE are also using different solutions to
provide a hardened by default system

Debian is a quality system and it is unacceptable that we are still not
using the hardening options by default.

> This is likely the core of the disagreement: how to apply the
> flags. I have a strong opinion about this because my perspective is
> security-oriented. I think all compiles should be hardened; default
> to being secure, and whitelist that which needs things disabled. Same
> policy applies to firewalls, etc. As before, I stand by my original
> email that started this thread:
> http://lists.debian.org/debian-gcc/2009/10/msg00186.html

You are quite right!

RS

Reply to:

Follow-Ups:
- Bug#552688: For real!?
  - From: Don Armstrong <don@debian.org>

Prev by Date: Re: Bug#552688: Please decide how Debian should enable hardening build flags
Next by Date: Bug#552688: For real!?
Previous by thread: Bug#552688: Please decide how Debian should enable hardening build flags
Next by thread: Bug#552688: For real!?
Index(es):
- Date
- Thread