Kakou wrote:
Hello all,
I have updated my gcc 3.4 profile (with SELinux) to gcc 4.3 profile
(with a modified profile to support SELinux v2 policy).
After recompiling gcc+glibc, I obtain this :
gcc-config -l
[1] i686-pc-linux-gnu-4.3.4 *
[2] i686-pc-linux-gnu-4.3.4-hardenednopie
[3] i686-pc-linux-gnu-4.3.4-vanilla
[2] does not support support pie and I don't have a -hardened config.
So my question is : "[1] is the gcc hardened profile ?"
(when I test with paxtest, all is randomized)
Yes - actually I think it was the same on the gcc-3.4 profile also - the
hardened profile was just the short named option and the other options
are the ones which gradually work towards the "vanilla" specs by
disabling certain hardening features
Good luck
Ed W
