Anthony G. Basile posted on Tue, 26 Oct 2010 07:23:58 -0400 as excerpted: > On 10/26/2010 02:45 AM, Mike Frysinger wrote: >> hardened systems (as well as my non-hardened ones) have been running >> FEATURES=sfperms for years with no known bugs. so unless someone has a >> compelling reason otherwise, i'll be enabling this in >> profiles/default/linux/ for all linux systems. >> -mike >> > Good idea. Is this in response to the $ORIGIN root exploit in glibc? > (bug #341755).
You apparently missed his followup. Quoting: >> nm. tove pointed out that portage already takes care of this in its >> make.globals. Tho one wonders about the other PMs... but do they even use FEATURES the same way? -- Duncan - List replies preferred. No HTML msgs. "Every nonfree program has a lord, a master -- and if you use the program, he is your master." Richard Stallman
