[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: SSP for Debian unstable. was Re: security enhanced debian branch?

On Sat, 20 Dec 2003 02:28, Steve Kemp <skx@debian.org> wrote:
>   OK after the positive comments yesterday I've made an SSP compiled
>  version of GCC for unstable available.

I've just started testing this.  The first thing I noticed is that every SSP 
program you compiled wants to read /dev/urandom.  Is this the only way to 
compile such programs?  Can SSP provide benefits even when /dev/urandom is 

Currently the SE Linux policy prevents most domains from accessing
/dev/*random ...

http://www.coker.com.au/selinux/   My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/  Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/    Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/  My home page

Reply to: