| 1 |
On Tuesday 10 May 2005 13:24, Ned Ludd wrote: |
| 2 |
> On Tue, 2005-05-10 at 11:24 +0100, Pedro Venda wrote: |
| 3 |
> > On Tuesday 10 May 2005 11:12, kakou wrote: |
| 4 |
> > > Pedro Venda wrote: |
| 5 |
> > > >hi everyone, |
| 6 |
> > > > |
| 7 |
> > > >I've started using hardened for a couple of weeks now. I've done an |
| 8 |
> > > |
| 9 |
> > > emerge -e |
| 10 |
> > > |
| 11 |
> > > >world and there are still 134 ET_EXEC binaries left, including for |
| 12 |
> > > > example dhcpd. |
| 13 |
> > > |
| 14 |
> > > How do you count ET_EXEC binaries left ? |
| 15 |
> > |
| 16 |
> > scanelf -aR / | grep ET_EXEC | wc -l |
| 17 |
> > |
| 18 |
> > > >Shouldn't be 0 ET_EXEC binaries left after world recompilation? or |
| 19 |
> > > > could |
| 20 |
> |
| 21 |
> There will never be 0. A few things really need to be ET_EXEC. Any |
| 22 |
> static binary for example will be ET_EXEC and pretty much all the glibc |
| 23 |
> (ldconfig/localedef) |
| 24 |
> |
| 25 |
> Better for you todo a scanelf -pR |grep ET_EXEC |
| 26 |
> |
| 27 |
> scanelf -Rp|grep ET_EXEC| awk '{print $2}'| xargs file|grep -v |
| 28 |
> "statically linked"|cut -d : -f 1| xargs qfile |
| 29 |
> |
| 30 |
> qfile comes from here and I'll add it to the tree soon. |
| 31 |
> http://dev.gentoo.org/~solar/portage_misc/qfile.c |
| 32 |
|
| 33 |
183 binaries left. |
| 34 |
|
| 35 |
qfile does something like qpkg -f $file right? |
| 36 |
|
| 37 |
regards, |
| 38 |
pedro venda. |
| 39 |
-- |
| 40 |
|
| 41 |
Pedro João Lopes Venda |
| 42 |
email: pjvenda < at > arrakis.dhis.org |
| 43 |
http://arrakis.dhis.org |
Archives