Package: ntp Version: 1:4.2.4p6+dfsg-2 Severity: normal Tags: patch User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu karmic ubuntu-patch
Hello! Since ntpd listens on external ports, I think it might benefit from having hardening[1] enabled for its build. The attached patch implements this. Thanks! -Kees [1] http://wiki.debian.org/Hardening -- Kees Cook @debian.org
diff -uNrp ntp-4.2.4p6+dfsg~/debian/control ntp-4.2.4p6+dfsg/debian/control --- ntp-4.2.4p6+dfsg~/debian/control 2009-08-20 17:14:04.000000000 -0700 +++ ntp-4.2.4p6+dfsg/debian/control 2009-08-20 17:12:29.000000000 -0700 @@ -4,7 +4,7 @@ Priority: optional Maintainer: Ubuntu Core Developers <ubuntu-devel-disc...@lists.ubuntu.com> XSBC-Original-Maintainer: Debian NTP Team <pkg-ntp-maintain...@lists.alioth.debian.org> Uploaders: Bdale Garbee <bd...@gag.com>, Peter Eisentraut <pet...@debian.org>, Kurt Roeckx <k...@roeckx.be> -Build-Depends: debhelper (>= 6), libedit-dev, libcap2-dev | not+linux-gnu, libssl-dev (>= 0.9), quilt (>= 0.40) +Build-Depends: debhelper (>= 6), libedit-dev, libcap2-dev | not+linux-gnu, libssl-dev (>= 0.9), quilt (>= 0.40), hardening-wrapper Build-Conflicts: libavahi-compat-libdnssd-dev, libreadline-dev, libwww-dev, libwww-ssl-dev Standards-Version: 3.8.0 Homepage: http://support.ntp.org/ diff -uNrp ntp-4.2.4p6+dfsg~/debian/rules ntp-4.2.4p6+dfsg/debian/rules --- ntp-4.2.4p6+dfsg~/debian/rules 2009-08-20 17:14:04.000000000 -0700 +++ ntp-4.2.4p6+dfsg/debian/rules 2009-08-20 17:12:42.000000000 -0700 @@ -1,5 +1,6 @@ #!/usr/bin/make -f +export DEB_BUILD_HARDENING=1 include /usr/share/quilt/quilt.make # hacks to avoid running these things during the build
