Re: Introducing security hardening features for Lenny

To: debian-devel@lists.debian.org
Subject: Re: Introducing security hardening features for Lenny
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Sun, 3 Feb 2008 20:53:00 +0100
Message-id: <[🔎] slrnfqc6ss.3b4.jmm@inutil.org>
References: <20080129211624.GA3982@galadriel.inutil.org> <20080130094141.GA16248@kos.to>

Riku Voipio wrote:
>> In kernels that support text ASLR, programs compiled
>> for PIE will gain full position randomization.
>
> For which architectures is text ASLR available? does it require
> external kernel patches? PIE means considerable system overhead
> and fatter binaries, especially for systems without large
> caches.

I'm only aware of x86 and amd64. I don't think it's necessary on
other archs.

Did you followup with upstream on the SSP problems we've seen
on ARM?

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Re: Introducing security hardening features for Lenny
  - From: Riku Voipio <riku.voipio@iki.fi>

Prev by Date: Re: Proposalto introduce compiler options passed from dpkg-buildpackage
Next by Date: Re: Introducing security hardening features for Lenny
Previous by thread: Re: Proposalto introduce compiler options passed from dpkg-buildpackage
Next by thread: Re: Introducing security hardening features for Lenny
Index(es):
- Date
- Thread