1 |
Am 17.12.2011 16:38, schrieb James: |
2 |
> Florian Philipp <lists <at> binarywings.net> writes: |
3 |
> |
4 |
>> |
5 |
>> Hi list! |
6 |
>> |
7 |
>> I just noticed the USE flag "security" in stable app-portage/eix. The |
8 |
>> description is hardly helpful: It fixes exploits but is not enabled by |
9 |
>> default. Why? What are the drawbacks? I couldn't find anything in a |
10 |
>> quick online search. |
11 |
> |
12 |
> ef security |
13 |
> |
14 |
> This adds some checks which can prevent certain exploits if e.g. the eix code |
15 |
> has a bug. If you use the hardened toolchain, using this flag does not increase |
16 |
> security and can even lead to problems. |
17 |
> install the security module needed for some servers |
18 |
> |
19 |
> |
20 |
|
21 |
As I said, this description is hardly useful. If it fixes exploits, then |
22 |
why is it not enabled for non-hardened profiles per default? |