On Tue, Nov 22, 2016 at 10:18:32PM +0100, Benjamin Baier wrote: > On Tue, 22 Nov 2016 19:44:48 +0100 > "minek van" <[email protected]> wrote: > > > So why isn't "S" enabled by default? It is the "most secure" solution for > > the > > malloc settings, no? > > Or are there still programs that will crash when "S" is used? > > What are those? > > Adding new printer on the CUPS webinterface does not "like" this > malloc option. It doesn't crash, it just doesn't work. > > Subtle breakage like this might occure when you "set and forget" this > feature. I guess thats why it is labled "for security auditing". > > Greetings Ben >
Yes the 'S' setting finds all sorts of problems in ports. Last time I ran into one, gnome-shell crashed on startup and since gdm uses gnome-shell there was no graphical login. If you enable 'S' prepare for debugging complicated third party software on your own.
