Expanding the list of "Hardened Packages"

[Paolo Bonzini]

Il 29/03/2013 23:10, Richard W.M. Jones ha scritto:
>> > 
>> > Qemu is surely a good candidate for this.  Although it's not network-
>> > accessible, it is accessible from the guests that it runs via its huge
>> > and ill-specified surface of emulated devices.
> I'm running my own modified qemu package [qemu-1.4.0-5.fc20.x86_64]
> with hardening flags enabled.  It seems to be working OK so far ...

QEMU's own configure script takes care of enabling PIE and relro, at
least on x86/Linux and x86/OpenBSD.  Testers are welcome for other
architectures!

Paolo