* Steve Langasek:
>> Harden flags set AND ENFORCED on build environment(harden package)
>
> There is no way to "enforce" the use of hardening flags.
There is a way, involving multiple steps:
1. Put -grecord-gcc-switches into the hardening flags.
2. Make debuginfo packages mandatory.
3. Make fu
Control: tags -1 =
On Sun, Aug 23, 2015 at 12:46:22AM -0500, Richard Jasmin wrote:
> SELinux ENABLED and ENFORCING and INSTALLED WITH SeTroubleshoot [like
> Fedora has]
This is not a question for policy. SELinux is not enabled by default in
Debian because no one has gone to the effort of ensurin
Package: debian-policy
Severity: normal
Tags: newcomer upstream security
Hardening according to many devs I have spoken with is an afterthought,
especially post install. This is like reccommending Debian to be hacked.
Im not saying one move can stop a hacker, security is always an ongoing
situatio
3 matches
Mail list logo
