On 2017-Jul-7, at 1:37 AM, Bartłomiej Rutkowski <ro...@freebsd.org> wrote:
> On Thu, Jul 6, 2017 at 11:38 PM, Mark Millard <mar...@dsl-only.net> wrote: > The following is only offered as a possibility for where > the 2MB idea might have came from: https://hardenedbsd.org . > I make no claim that the script change is in fact > appropriate: I've not studied the issue. > > Not that it matters at all, but just to clear out the doubts, no this change > was not inspired by HardenedBSD in any way, I'd even say it was the other way > around ;) https://hardenedbsd.org "Stack Clash Mitigations" posting was dated: 2017-Jun-25 (This is clearly after they had worked on the changes.) Your -r320674 check in date: 2017-Jul-5 https://reviews.freebsd.org/D9700 was earlier and has for Diff 30173: "Update the stack guard option to new sysctl behavior": 2017-Jun-28 (The prior diff [26537] does not have the change.) 2017-Jun-28 is shortly after the hardenedbsd.org posting, not before. So it was not obvious to me that you might have influenced hardenedBSD's changes. Sounds more like full independence to me now. I do not know if you picked 2MB based on > Qualys' recommendation to use a minimum of 1MB or not. (Quoted from hardenedbsd's article.) === Mark Millard markmi at dsl-only.net _______________________________________________ svn-src-head@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/svn-src-head To unsubscribe, send any mail to "svn-src-head-unsubscr...@freebsd.org"
