On Fri, Jan 27, 2012 at 20:39, "Paweł Hajdan, Jr." <phajdan...@gentoo.org>wrote: > > The most common argument against it is performance loss I think, and > there are probably less than 10 packages that have some compilation > issues with PIE. In my opinion we can deal with that, and security > benefits are much more important.
I'm *not* suggesting PIE is enabled by default for all packages. This is a big job with performance losses, etc. I *am* suggesting that PIE is enabled for all SUID binaries.
