Re: When did Debian decide to enable PIE by default?

To: Thomas Schmitt <scdbackup@gmx.net>, "debian-user@lists.debian.org" <debian-user@lists.debian.org>
Cc: "debian-security@lists.debian.org" <debian-security@lists.debian.org>
Subject: Re: When did Debian decide to enable PIE by default?
From: 慕冬亮 <mudongliangabcd@hotmail.com>
Date: Wed, 9 Aug 2017 14:49:06 +0000
Message-id: <[🔎] DM5PR12MB1900CAD3186E9E96D479A279BC8B0@DM5PR12MB1900.namprd12.prod.outlook.com>
In-reply-to: <262267580036881032058@scdbackup.webframe.org>
References: <DM5PR12MB19005B1179B5C8F643461FAFBC8A0@DM5PR12MB1900.namprd12.prod.outlook.com> <262267580036881032058@scdbackup.webframe.org>


On 08/09/2017 10:31 AM, Thomas Schmitt wrote:
> Hi,
>
> 慕 冬亮 <mudongliangabcd@hotmail.com> wrote:
>> When does Debian Team, or Security Team decide to enable PIE by default?
> I guess it was one year ago. At least that's the dates one can see on
>    https://wiki.debian.org/Hardening/PIEByDefaultTransition
Such a good news for me, a student learning information security. 
However, I have a doubt, why does Debian enable PIE by default, other 
than stack protector and FORTIFY_SOURCE that are already enabled by 
default in the Ubuntu distribution?

I think stack protector(FORTIFY_SOURCE) has less overhead than PIE.

>
> Have a nice day :)
>
> Thomas
>

-- 

-----------------------
My best regards to you.

      No System Is Safe!
      Dongliang Mu

Reply to:

Prev by Date: Re: latest openssh for wheezy
Next by Date: Re: latest openssh for wheezy
Previous by thread: Re: latest openssh for wheezy
Next by thread: [tracker] New sub-states for issues tagged no-dsa
Index(es):
- Date
- Thread