Enable gcc and ld hardening by default in 0.2.3.x
|Reported by:||ioerror||Owned by:||ioerror|
|Keywords:||security tor-client||Cc:||arma, nickm, nextgens@…, tails@…, asn|
|Actual Points:||Parent ID:|
Per a discussion with Roger at the Seattle hackfest I propose we enable gcc and ld hardening by default in 0.2.3.x when the ./configure is built with no options.
Shall I submit a patch that flips the options? So rather than --enable-gcc-hardening, we say --disable-gcc-hardening?
Or shall we just load the options and call it a day?
If someone else wants to bell the cat, I'm happy to defer to them.
Change History (27)
Changed 3 years ago by nextgens
comment:24 Changed 3 years ago by nickm
- Resolution set to fixed
- Status changed from needs_review to closed