Bug#696261: marked as done (mention security hardening under "what's new")

To: Joost van Baal-Ilić <joostvb-debian-bug-20130126-3@mdcc.cx>
Subject: Bug#696261: marked as done (mention security hardening under "what's new")
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 26 Jan 2013 13:33:03 +0000
Message-id: <[🔎] handler.696261.D696261.135920692614284.ackdone@bugs.debian.org>
References: <20130126132844.GC28924@beskar.mdcc.cx> <97db9a453ee7ba4cdedd980d59ddc7be.squirrel@aphrodite.kinkhorst.nl>

Your message dated Sat, 26 Jan 2013 14:28:44 +0100
with message-id <20130126132844.GC28924@beskar.mdcc.cx>
and subject line release-notes: mention security hardening under "what's new"
has caused the Debian Bug report #696261,
regarding mention security hardening under "what's new"
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
696261: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696261
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: submit@bugs.debian.org
Subject: mention security hardening under "what's new"
From: "Thijs Kinkhorst" <thijs@debian.org>
Date: Tue, 18 Dec 2012 19:27:02 +0100
Message-id: <97db9a453ee7ba4cdedd980d59ddc7be.squirrel@aphrodite.kinkhorst.nl>

Package: release-notes
Tags: patch

Hi,

Attached patch adds a "what's new" item on the security hardening build
flags release goal. Please consider to apply. I'm not currently aware of
other hardening improvements except the flags, but if there are, they can
of course be included in this section.


Cheers,
Thijs

Index: en/whats-new.dbk
===================================================================
--- en/whats-new.dbk	(revision 9515)
+++ en/whats-new.dbk	(working copy)
@@ -450,6 +450,25 @@
 
 </section>
 
+<section id="hardening">
+  <title>Hardened security</title>
+  <para>
+  Many Debian packages have now been built with <systemitem role="package">gcc</systemitem>
+  compiler hardening flags enabled. These flags enable various protections against
+  security issues such as stack smashing, predictable locations of values in memory, etc.
+  An effort has been made to ensure that as many packages as possible include these
+  flags, especially focusing on those in the 'base'-installation, network-accessible
+  daemons and packages which have had security issues in recent years. 
+  </para>
+
+  <para>Note that the hardened build flags are not enabled by default in
+  <systemitem role="package">gcc</systemitem>, so are not used automatically
+  when locally building software. The package
+  <systemitem role="package">hardening-wrapper</systemitem> can provide a
+  <filename>gcc</systemitem> with these flags enabled.
+  </para>
+</section>
+
 <section id="stable-updates">
   <title>The stable-updates section</title>
   <para>

--- End Message ---

--- Begin Message ---

To: 696261-close@bugs.debian.org

Subject: release-notes: mention security hardening under "what's new"

From: Joost van Baal-Ilić <joostvb-debian-bug-20130126-3@mdcc.cx>

Date: Sat, 26 Jan 2013 14:28:44 +0100

Message-id: <20130126132844.GC28924@beskar.mdcc.cx>
patch applied in commit r9552.  Thanks!

Groeten,

Joost
--- End Message ---

Reply to:

Prev by Date: Bug#649240: release-notes: Upcoming upgrade issues with GNU Screen for Wheezy
Next by Date: Bug#609483: Bug #609483 : release-notes: Problem with non-ascii characters in pdf variant of r-n
Previous by thread: Bug#649240: release-notes: Upcoming upgrade issues with GNU Screen for Wheezy
Next by thread: Bug#609483: Bug #609483 : release-notes: Problem with non-ascii characters in pdf variant of r-n
Index(es):
- Date
- Thread