On Friday 27 January 2012 16:05:13 Jason A. Donenfeld wrote: > On Fri, Jan 27, 2012 at 21:13, "Paweł Hajdan, Jr." wrote: > > Again - only if we don't get a consensus here. > > Wait... Is anybody here *actually opposed* to not enabling PIE on *SUID > binaries*?
he was talking system wide considering the number set*id binaries in the tree, and their requirements (they tend to not be performance sensitive in the slightest), i don't have a problem with steering them in the PIE direction. ignoring /usr/bin/Xorg here of course, but that has a lot more problems that i doubt PIE will make much of a difference. -mike
signature.asc
Description: This is a digitally signed message part.
