Re: Secure debian

To: debian-project@lists.debian.org, jasem masry <jasem.msry@gmail.com>
Subject: Re: Secure debian
From: Micha Lenk <micha@lenk.info>
Date: Tue, 21 Oct 2025 12:35:24 +0200
Message-id: <[🔎] 8D49E712-390A-41F5-A52B-268826E958B6@lenk.info>
In-reply-to: <[🔎] CAAvbHjLtoE_yFpsk+4w7TrXWxRJOLE18VTVNUFiPmfH9e2CjLA@mail.gmail.com>
References: <[🔎] CAAvbHjLtoE_yFpsk+4w7TrXWxRJOLE18VTVNUFiPmfH9e2CjLA@mail.gmail.com>

Hi Jasem,

Please note that you've used the debian-project mailing list, which is discussing topics around advancing the Debian project at large. I appreciate your interest in the Debian project and I am curious about your contributions to the project.


Am 20. Oktober 2025 07:24:46 MESZ schrieb jasem masry <jasem.msry@gmail.com>:
>I want to secure debian against vulnerabilities exploitation and I know
>that I should use compiler flags but the problem is there are many apps on
>the system should I compiling its app by app or there are a practical
>solution for that I want urls to articles on the web for the solution to
>save your time

With the given information I can only provide a rough idea how you could tackle such a project. Debian build infrastructure takes care of the build flags through certain environment variables and tools. Assuming you have your own build infrastructure, you could easily influence the default build flags used for compilation. A starting point for further investigation could be the documentation for our dpkg-buildflags tool, which is available online here: <https://manpages.debian.org/trixie/dpkg-dev/dpkg-buildflags.1.en.html>

I hope this helps you as a starter.

Kind regards,
Micha

Reply to:

References:
- Secure debian
  - From: jasem masry <jasem.msry@gmail.com>

Prev by Date: Secure debian
Next by Date: Re: Secure debian
Previous by thread: Secure debian
Next by thread: Re: Secure debian
Index(es):
- Date
- Thread