1 |
OK. I've been reading this whole thread, and its getting a bit |
2 |
rediculous. One side *cough* Ciaran *cough* claims that this will |
3 |
wreak havoc on users systems and bring on the apocalypse in return |
4 |
for minor security gains, that its a hack, and is generaly bad. The |
5 |
other claims that it is a usefulle security tool that comes at the |
6 |
cost of a minor preformance hit; that while it _is_ the upstream |
7 |
developers job to make their code secure, it is still our job to |
8 |
provide security to the users. Nobody is winning this argument, mainly |
9 |
because neither side is addressing the other side's arguments. |
10 |
|
11 |
This is filling my mailbox with junk. |
12 |
|
13 |
Well, I'm running my system with -fstack-protector in the global |
14 |
CFLAGS, and it works just fine at no performace hit that I've noticed. |
15 |
In addition, the rest of my CFLAGS are what most people whould |
16 |
consider "insane," and I still managed to compile my whole system with |
17 |
only one error. |
18 |
|
19 |
My vote is make it default and let Ciara... I mean the users turn it |
20 |
off if they want to. |
21 |
|
22 |
Now please reach a decision and let this cursed thread die. |
23 |
|
24 |
|
25 |
Colin |
26 |
|
27 |
-- |
28 |
gentoo-dev@g.o mailing list |