-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 2011-09-14 00:38, Kees Cook wrote:
> Hi,
>
> I would like to propose a release goal of enabling hardening build flags[1]
> for all C/C++ packages in the archive[2]. For Wheezy, specific sub-goals are
> being chosen.
>
> The default flags are alm
Niels Thykier schrieb:
> On 2011-09-14 18:36, Kees Cook wrote:
>> Hi,
>>
>> On Wed, Sep 14, 2011 at 08:02:13AM +0200, Niels Thykier wrote:
>>> I have two questions so far. First what usertag will you be using for
>>> the bugs (if any)? As far as I can tell, there is not listed on the
>>> wiki.
On 2011-09-14 18:36, Kees Cook wrote:
> Hi,
>
> On Wed, Sep 14, 2011 at 08:02:13AM +0200, Niels Thykier wrote:
>> I have two questions so far. First what usertag will you be using for
>> the bugs (if any)? As far as I can tell, there is not listed on the
>> wiki. Secondly, where can I (or will
Hi,
On Wed, Sep 14, 2011 at 08:02:13AM +0200, Niels Thykier wrote:
> I have two questions so far. First what usertag will you be using for
> the bugs (if any)? As far as I can tell, there is not listed on the
> wiki. Secondly, where can I (or will I be able to) see the progress of
> this goal?
On 2011-09-14 00:38, Kees Cook wrote:
> Hi,
>
> I would like to propose a release goal of enabling hardening build flags[1]
> for all C/C++ packages in the archive[2]. For Wheezy, specific sub-goals are
> being chosen.
>
> The default flags are almost settled[3], additional subgoals may come
> up
On Tue, Sep 13, 2011 at 07:01:13PM -0400, Michael Gilbert wrote:
> On Tue, 13 Sep 2011 15:38:29 -0700 Kees Cook wrote:
> > I would like to propose a release goal of enabling hardening build flags[1]
> > for all C/C++ packages in the archive[2].
>
> I think "all C/C++ packages" is an impossibility
Hi,
On Tue, Sep 13, 2011 at 07:24:10PM -0400, Michael Gilbert wrote:
> On Tue, 13 Sep 2011 15:38:29 -0700 Kees Cook wrote:
> > [1] http://wiki.debian.org/Hardening
You mean http://wiki.debian.org/ReleaseGoals/Hardening ?
> It looks like we're duplicating wiki work. The page I created
> yesterda
On Tue, 13 Sep 2011 15:38:29 -0700 Kees Cook wrote:
> [1] http://wiki.debian.org/Hardening
It looks like we're duplicating wiki work. The page I created
yesterday is much more comprehensive and detailed right now:
http://wiki.debian.org/ReleaseGoals/SecurityHardeningBuildFlags
Best wishes,
Mike
On Tue, 13 Sep 2011 15:38:29 -0700 Kees Cook wrote:
> Hi,
>
> I would like to propose a release goal of enabling hardening build flags[1]
> for all C/C++ packages in the archive[2].
I think "all C/C++ packages" is an impossibility in the wheezy
timeframe, and we should be honest about that. So
Hi,
I would like to propose a release goal of enabling hardening build flags[1]
for all C/C++ packages in the archive[2]. For Wheezy, specific sub-goals are
being chosen.
The default flags are almost settled[3], additional subgoals may come
up[4], and more work is needed to identify the specific
10 matches
Mail list logo
