F22 System Wide Change: Harden all packages with position-independent code
Peter Robinson
pbrobinson at gmail.com
Sat Jan 10 15:19:28 UTC 2015
> On Thu, 2015-01-08 at 08:47 -0500, Paul Wouters wrote:
>> On Thu, 8 Jan 2015, Dhiru Kholia wrote:
>>
>> >> | Your package accepts/processes untrusted input.
>> >>
>> >> This seems to be about every package that I use, because I most if not
>> >> all tools process untrusted data from the Internet.
>> >
>> > +1. This view is rapidly gaining traction and visibility in recent times.
>>
>> Can we throw prelink out as well when we do this?
>
>
> Prelink is already gone. We haven't been running it since F19, IIRC.
It's not completely gone, there's still a number of packages that run
it as part of the install or build process because I've had to fix
ppc64le/aarchh64 package builds because we don't have it at all on
those platforms. I think we also ship it by default.
Peter
More information about the devel
mailing list