Gentoo Archives: gentoo-dev

From:	Markos Chandras <hwoarang@g.o>
To:	gentoo-dev@l.g.o
Subject:	Re: [gentoo-dev] Re: Can we get PIE on all SUID binaries by default, por favor?
Date:	Mon, 23 Jan 2012 20:49:48
Message-Id:	`4F1DC790.50801@gentoo.org`
In Reply to:	[gentoo-dev] Re: Can we get PIE on all SUID binaries by default, por favor? by "Jason A. Donenfeld"

1	-----BEGIN PGP SIGNED MESSAGE-----
2	Hash: SHA512
3
4	On 01/23/2012 07:40 PM, Jason A. Donenfeld wrote:
5	>
6	> What I propose is just to /detect/ at merge-time whether or not
7	> there are SUID binaries that are not PIE, and if so, spit out a Q&A
8	> warning.
9	>
10	> That way, package maintainers could fix things up bit by bit,
11	> without having to burden you alone with tinderbox troubles.
12
13	This actually sounds a great idea. It probably worth opening a feature
14	request for portage using our bugzilla.
15
16	- --
17	Regards,
18	Markos Chandras / Gentoo Linux Developer / Key ID: B4AFF2C2
19	-----BEGIN PGP SIGNATURE-----
20	Version: GnuPG v2.0.18 (GNU/Linux)
21
22	iQIcBAEBCgAGBQJPHcePAAoJEPqDWhW0r/LCGvwP/03SWLvj9L7DzWq4hRyvOFUB
23	t0ugAPv+D3xT1dyAY6QarPWAMotfPPk2LTSR2y4yvxqt8mYoW0xablTB9S+V5YSn
24	QbBJOQ+lsWzr0Qv5OcWBWWIeOIdyVfX7eMer9YTD1T+zVVOixU0P9T60zq0F6VmI
25	7Sk/wmFVmj0Tm3iqS9rWkA6aik5TVTKN4NdjqEoOlyZUqNtdgqnChf3eWlWdK/tK
26	nctze3JRdQdXVcY4q4JHh+cwR099wBL61BzCB9lrwc0HCfKBU3oKrqU29ZjKsDfQ
27	xtOgOmh0pCVuPtbHnVHC+YWGmBpoRuExaDa5PMbCCrQPi/bcQioMa6XaVmkJqJ7M
28	bcj5ArCEuE7+66iUvhjwv2vMyA9Vm5RLCpc7YN7dfLwsT+d/2W6+CtRkr38v+mGd
29	OcFiCfcw3tPoUvZwL+RrAk1rXb3mL4in3XeKwwshq6VjIajKfX29h99YazeZ1X5N
30	WErKapz9t6pdEcfurXMZJb2WeLljKHI9DkRcOXvK9mb4dDbKk20+KeQ646N5pJCS
31	c6pJnoU1R8zXPNeP+xAKvaRslubXNmY6mPfE5Lqmzz0DLYi7BMHjP3Cjx30kc9hz
32	SwiqoEPSdPE4dzQhqP5EGXZkxgUhCu4IaeCWVCh/sP67QZk8dElBJ9nj14w++Kxr
33	CGNbH7oBy5y5vNAd+LCr
34	=glKZ
35	-----END PGP SIGNATURE-----