From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Rc3FX-0004MS-Nt for garchives@archives.gentoo.org; Sat, 17 Dec 2011 23:01:03 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 8757D21C0DD; Sat, 17 Dec 2011 23:00:49 +0000 (UTC) Received: from mail.digimed.co.uk (82-69-83-178.dsl.in-addr.zen.co.uk [82.69.83.178]) by pigeon.gentoo.org (Postfix) with ESMTP id A630D21C01F for ; Sat, 17 Dec 2011 22:59:48 +0000 (UTC) Received: from digimed.co.uk (yooden.digimed.co.uk [192.168.1.6]) by mail.digimed.co.uk (Postfix) with ESMTPSA id AA18B803E6 for ; Sat, 17 Dec 2011 22:59:47 +0000 (GMT) Date: Sat, 17 Dec 2011 22:59:40 +0000 From: Neil Bothwick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: eix USE=security Message-ID: <20111217225940.66cfaa47@digimed.co.uk> In-Reply-To: <4EED1C3D.4020603@binarywings.net> References: <4EEC79D5.2050404@binarywings.net> <4EED1C3D.4020603@binarywings.net> Organization: Digital Media Production X-Mailer: Claws Mail 3.7.10cvs103 (GTK+ 2.24.8; x86_64-pc-linux-gnu) X-GPG-Fingerprint: 7260 0F33 97EC 2F1E 7667 FE37 BA6E 1A97 4375 1903 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=PGP-SHA1; boundary="Sig_//.ahMOQBZxNKjd0RkjHreT0"; protocol="application/pgp-signature" X-Archives-Salt: 47333579-167c-4bfe-85a0-a31d993a4001 X-Archives-Hash: cedebcf7519c7a317344681dc3dde871 --Sig_//.ahMOQBZxNKjd0RkjHreT0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Sat, 17 Dec 2011 23:48:29 +0100, Florian Philipp wrote: > > This adds some checks which can prevent certain exploits if e.g. the > > eix code has a bug. > As I said, this description is hardly useful. If it fixes exploits, then > why is it not enabled for non-hardened profiles per default? It doesn't actually say that it fixes anything. It's more of a "it may possibly prevent certain exploits using undefined, and maybe unknown, bugs in the code". That's more a politician's language than a coder's. --=20 Neil Bothwick Good fortune will find you provided you left clear instructions. --Sig_//.ahMOQBZxNKjd0RkjHreT0 Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (GNU/Linux) iEYEARECAAYFAk7tHuIACgkQum4al0N1GQPceACfZs7U6il2zFqzQVIJwZPod4+p eu4Amwb6Of00zzRjbSitm6wa+0tiJywY =7Mgd -----END PGP SIGNATURE----- --Sig_//.ahMOQBZxNKjd0RkjHreT0--