On Wed, 01 Apr 2015 15:14:22 -0400 Thomas Ward <[email protected]> wrote: > Included this in a build downstream, in Ubuntu, and the change here in > git ***will cause a fail to build error in all architectures***. > > -fPIE -pie is a CFLAGS item, not a configure argument. In theory you > would define this via dpkg-buildflags. > > I'm working on a diff that would achieve this and will test that change > against Debian, and provide a patch. In the interim the diff done in > git should be *reverted* as it does not fix the problem and introduces a > fail to build on all architectures.
Hi Thomas, While you are at it, it may be easy to also enable BIND_NOW as is done for Apache2? This seems fairly low risk, especially for a daemon, according to [1]. Thanks again for your contribution to this, it's really appreciated. Regards, Simon 1: https://wiki.debian.org/Hardening#DEB_BUILD_HARDENING_BINDNOW_.28ld_-z_now.29 -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
