| 1 |
On Wed, 2004-05-19 at 18:23, Tom Payne wrote: |
| 2 |
> On Wed, May 19, 2004 at 08:52:02PM +0100, Stuart Herbert wrote: |
| 3 |
> > Sorry, but I don't. I'm sympathetic, and agree that USE flags shouldn't be |
| 4 |
> > added for the sake of it. But I believe that the 'hardened' USE flag is for |
| 5 |
> > a different feature. Combining the two does not make sense to me. |
| 6 |
> > |
| 7 |
> > I'm not going to do it. |
| 8 |
|
| 9 |
> hardened Gentoo meaning stack overflow protection, toolchain mods, etc. etc. |
| 10 |
> is different to harder-to-exploit PHP. Hardened PHP (AIUI) is more like Safe |
| 11 |
> mode in Ruby (and other scripting languages). The two are different things |
| 12 |
> and should not be confused. |
| 13 |
|
| 14 |
No, it means the same thing. From the hardened php site: |
| 15 |
|
| 16 |
Implemented protections (until now) |
| 17 |
|
| 18 |
- Canary protection of the Zend Memory Manager |
| 19 |
- Canary protection of Zend Linked Lists |
| 20 |
- Protection against internal format string exploits |
| 21 |
- Protection against arbitrary code inclusion |
| 22 |
- Syslog logging of attackers IP |
| 23 |
|
| 24 |
The first four are all hardened-like things, a la PaX, PIE, and SSP. |
| 25 |
|
| 26 |
-- |
| 27 |
Chris PeBenito |
| 28 |
<pebenito@g.o> |
| 29 |
Developer, |
| 30 |
Hardened Gentoo Linux |
| 31 |
Embedded Gentoo Linux |
| 32 |
|
| 33 |
Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243 |
| 34 |
Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243 |
Archives