1 |
On Sat, Jan 28, 2012 at 01:12, Mike Frysinger <vapier@g.o> wrote: |
2 |
> |
3 |
> > Wait... Is anybody here *actually opposed* to not enabling PIE on *SUID |
4 |
> > binaries*? |
5 |
> |
6 |
> he was talking system wide |
7 |
> |
8 |
|
9 |
This thread is about PIE on SUID executables. |
10 |
|
11 |
|
12 |
> |
13 |
> considering the number set*id binaries in the tree, and their requirements |
14 |
> (they tend to not be performance sensitive in the slightest), i don't have |
15 |
> a |
16 |
> problem with steering them in the PIE direction. |
17 |
> |
18 |
|
19 |
Great! |
20 |
|
21 |
|
22 |
> |
23 |
> ignoring /usr/bin/Xorg here of course, but that has a lot more problems |
24 |
> that i |
25 |
> doubt PIE will make much of a difference. |
26 |
> |
27 |
|
28 |
Oh boy. Yea. Oh boy. Xorg should be PIE too, I suppose. Only takes |
29 |
one rotten egg. |
30 |
|
31 |
|
32 |
|
33 |
> -mike |
34 |
> |