1 |
On Wed, 2004-05-19 at 18:23, Tom Payne wrote: |
2 |
> On Wed, May 19, 2004 at 08:52:02PM +0100, Stuart Herbert wrote: |
3 |
> > Sorry, but I don't. I'm sympathetic, and agree that USE flags shouldn't be |
4 |
> > added for the sake of it. But I believe that the 'hardened' USE flag is for |
5 |
> > a different feature. Combining the two does not make sense to me. |
6 |
> > |
7 |
> > I'm not going to do it. |
8 |
|
9 |
> hardened Gentoo meaning stack overflow protection, toolchain mods, etc. etc. |
10 |
> is different to harder-to-exploit PHP. Hardened PHP (AIUI) is more like Safe |
11 |
> mode in Ruby (and other scripting languages). The two are different things |
12 |
> and should not be confused. |
13 |
|
14 |
No, it means the same thing. From the hardened php site: |
15 |
|
16 |
Implemented protections (until now) |
17 |
|
18 |
- Canary protection of the Zend Memory Manager |
19 |
- Canary protection of Zend Linked Lists |
20 |
- Protection against internal format string exploits |
21 |
- Protection against arbitrary code inclusion |
22 |
- Syslog logging of attackers IP |
23 |
|
24 |
The first four are all hardened-like things, a la PaX, PIE, and SSP. |
25 |
|
26 |
-- |
27 |
Chris PeBenito |
28 |
<pebenito@g.o> |
29 |
Developer, |
30 |
Hardened Gentoo Linux |
31 |
Embedded Gentoo Linux |
32 |
|
33 |
Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243 |
34 |
Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243 |