Re: Introducing security hardening features for Lenny
-----BEGIN PGP SIGNED MESSAGE-----
On 02/04/08 05:45, Riku Voipio wrote:
> On Sun, Feb 03, 2008 at 08:53:00PM +0100, Moritz Muehlenhoff wrote:
>> Did you followup with upstream on the SSP problems we've seen
>> on ARM?
> Basicly their response was basicly "why would anyone want
> 5-10% bigger and slower binaries on arm". It was also discussed
Because ARM systems are almost always embedded, and don't get
updated very often, so from the start should be as hardened as
possible against attack.
And if that means a 10% slowdown, so be it.
> the possibility of --disable-ssp we use on our current arm/armel
> toolchain being broken. Once I have a bit more time I'll try
> seeing what happens if you build gcc-4.3 with ssp enabled.
Ron Johnson, Jr.
Jefferson LA USA
PETA - People Eating Tasty Animals
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
-----END PGP SIGNATURE-----