On 30 Dec 2011 at 13:28, Sven Vermeulen wrote:
> Regarding the firefox issue, I don't know if a bug is already opened for
> that, but the solution is to paxmark -r (disable RANDMMAP) both xpcshell
> (you'll need to edit the ebuild to do so or do it before it starts in the
> install phase) and the
Isn't it miserable to see, that as time is passing by, more and more
important softwares (java, python, libreoffice, firefox) conflict with
more and more PAX restrictions?
I would expect exactly the opposite. But it seems, that developers become
less and less aware (or care less) about security.
N
On 12/31/11 08:43, "Tóth Attila" wrote:
> Isn't it miserable to see, that as time is passing by, more and more
> important softwares (java, python, libreoffice, firefox) conflict
> with more and more PAX restrictions? I would expect exactly the
> opposite. But it seems, that developers become less
I'm aware of Qubes. But as long as it is based on rpms, I won't make the
time investment necessary for studying it.
It would be good if Joanna would realize, that a source based rolling
distro is easier to handle for their purposes. I haven't aware this was
addressed on the mailing list. BTW Laszlo
Excerpts from Tóth Attila's message of Sat Dec 31 19:22:11 -0700 2011:
>
> Handling the firefox situation at the ebuild level is pretty simple, since
> we have pax-marking available now for use. The real solution would be to
> teach upstream about security and proper memory handling. As it was
> m
