Gentoo Archives: gentoo-dev

From:	"Jason A. Donenfeld" <Jason@×××××.com>
To:	gentoo-dev@l.g.o
Subject:	Re: [gentoo-dev] Re: Can we get PIE on all SUID binaries by default, por favor?
Date:	Mon, 23 Jan 2012 19:58:21
Message-Id:	`CAHmME9q9L1n5yyX4MevnM3aVw6mGxCxgB94OchAL4sONtV90Ag@mail.gmail.com`
In Reply to:	Re: [gentoo-dev] Re: Can we get PIE on all SUID binaries by default, por favor? by Mike Gilbert

1	To check for PIE,
2
3	readelf -h /bin/su \| grep Type
4
5	If it says EXEC, no PIE. If it says DYN, yes PIE.
6
7	--
8	sent from my mobile
9
10
11	On 1/23/12, Mike Gilbert <floppym@g.o> wrote:
12	> On Mon, Jan 23, 2012 at 2:40 PM, Jason A. Donenfeld <Jason@×××××.com> wrote:
13	>> That way, package maintainers could fix things up bit by bit, without
14	>> having
15	>> to burden you alone with tinderbox troubles.
16	>
17	> How do I go about testing with PIE/ASLR on my own box? Is it just some
18	> CFLAGS?
19	>
20	> A link to some documentation would or just a quick set of instructions
21	> would be great.
22	>
23	>

Subject	Author
Re: [gentoo-dev] Re: Can we get PIE on all SUID binaries by default, por favor?	Mike Gilbert <floppym@g.o>