Hi, with a recent nfs-common package:
Package: nfs-common Version: 1:1.3.4-2 the hardening situation is still not very good: # ./hardening-check /usr/sbin/rpc.* /usr/sbin/rpc.gssd: Position Independent Executable: yes Stack protected: no, not found! Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: no, not found! /usr/sbin/rpc.idmapd: Position Independent Executable: yes Stack protected: no, not found! Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: no, not found! /usr/sbin/rpc.mountd: Position Independent Executable: yes Stack protected: no, not found! Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: no, not found! /usr/sbin/rpc.nfsd: Position Independent Executable: yes Stack protected: no, not found! Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: no, not found! /usr/sbin/rpc.rquotad: Position Independent Executable: no, normal executable! Stack protected: yes Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: no, not found! /usr/sbin/rpc.statd: Position Independent Executable: yes Stack protected: no, not found! Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: no, not found! /usr/sbin/rpc.svcgssd: Position Independent Executable: yes Stack protected: no, not found! Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: no, not found! -- Laurent.
