Bug#552688: For real!?
> I don't have the resources to maintain that patch in Debian,
> and in Ubuntu it did take more than twelve months to even get the
> testsuite fixes.
Matthias if you wont do the job right, just don't! You are not
maintaining something when you are not doing it right!
Please step down and let someone else take over! Debian needs to be
secure by default!
Ubuntu has been running with hardening patches for more than about four
years now. Both Fedora and SUSE are also using different solutions to
provide a hardened by default system
Debian is a quality system and it is unacceptable that we are still not
using the hardening options by default.
> This is likely the core of the disagreement: how to apply the
> flags. I have a strong opinion about this because my perspective is
> security-oriented. I think all compiles should be hardened; default
> to being secure, and whitelist that which needs things disabled. Same
> policy applies to firewalls, etc. As before, I stand by my original
> email that started this thread:
> http://lists.debian.org/debian-gcc/2009/10/msg00186.html
You are quite right!
RS
Reply to: