On Mon, May 19, 2014 at 11:26:03AM -0700, Jonathan Nieder wrote: > Hi, > > Russ Allbery wrote: > > > Usually I argue for relaxing it to a should. In this case, I think we can > > flesh out the exception somewhat better and preserve the must. > > > > Binary executables must not be statically linked with the GNU C > > library, since this prevents the binary from benefiting from > > fixes and improvements to the C library without being rebuilt > > and complicates security updates. This requirement may be > > relaxed for binary executables whose intended purpose is to > > diagnose and fix the system in situations where the GNU C > > library may not be usable (such as system recovery shells or > > utilities like ldconfig) or for binary executables where the > > security benefits of static linking outweigh the drawbacks. > > Seconded. Seconded. Thus, let start a ten days discussion period. Cheers, -- Bill. <ballombe@debian.org> Imagine a large red swirl here.
Attachment:
signature.asc
Description: Digital signature