On Tue, Oct 15, 2013 at 8:42 PM, Carsten Haitzler <[email protected]> wrote: > i'm not so sure on prelinking. it does have perf upsides, but comes with > downsides. namely ANY change of a shared lib (eg upgrade, security fix etc.) > requires re-running prelink on all binaries and other shred libs that depend > on it. this is costly and requires a lot of tracking. it also negates the > ability to keep md5/sha1 hashes of all files in a "secure place" and compare > against it to detect intrusion and hacking... :( prelink is a bit of a > faustian bargain... :)
I want to echo Carsten's point here. prelink as done in distros is incompatible with integrity protection! Cheers -- Michael Leibowitz _______________________________________________ Dev mailing list [email protected] https://lists.tizen.org/listinfo/dev
