Bug#588543: marked as done (Please consider applying security harden gcc features patch)

[Debian Bug Tracking System]

Your message dated Sat, 18 Sep 2010 19:46:35 +0200
with message-id <20100918174635.gh7...@anguilla.noreply.org>
and subject line Re: Bug#588543: Please consider applying security harden gcc 
features patch
has caused the Debian Bug report #588543,
regarding Please consider applying security harden gcc features patch
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
588543: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=588543
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: tor
Severity: wishlist
Tags: patch


Hi!

I prepared a trivial patch to adopt security hardened features from gcc.
This is quite interesting for the remote and undesired possibility that
0days were to be discovered or any malicious activity against a certain
node is targeted using the Tor relay-retransmission network flow.

For the implementation itself, it's completely trivial, as
hardening-includes wrap all the intelligence about which architectures
supports a features and which does not in a dynamic way, plus it adds
helpful functionality on specific disable switches in case you need them.
I've tested this patch on both i386 and amd64 and works perfectly well,
plus I've been running a patched amd64 relay at ~3Mbytes/s for about 3
days without errors.

As for the reasons about applying it, I consider you'll already have
them all so I wont make you loose your time reading them :-), but if you
consider there exists any one not to apply, please tell me!

Please consider applying the attached patch.


Greetings,

Dererk

-- 
BOFH excuse #167:
excessive collisions & not enough packet ambulances

hardening.patch.gz
Description: application/gzip

signature.asc
Description: OpenPGP digital signature

--- End Message ---

--- Begin Message ---

Version: 0.2.2.7-alpha-2

On Fri, 09 Jul 2010, Dererk wrote:

> I prepared a trivial patch to adopt security hardened features from gcc.

Tor has done this since mid January actually.

Sorry for the late reply,
weasel
-- 
                           |  .''`.  ** Debian GNU/Linux **
      Peter Palfrader      | : :' :      The  universal
 http://www.palfrader.org/ | `. `'      Operating System
                           |   `-    http://www.debian.org/

--- End Message ---