On Tue, 14 Jul 2020 at 11:12, Michael S. Tsirkin <m...@redhat.com> wrote: > And for people who want to build QEMU with lots of functionality (like > Fedora does), I think a -security flag would be a useful addition. > We can then tell security researchers "only a high security issue > if it reproduces with -security=high, only a security issue > if it reproduces with -security=low".
I think a -security option would also be useful to users -- it makes it easier for them to check "is this configuration using something that I didn't realize was not intended to be secure". For me, something useful for our users is much more compelling than "this might make security researchers' lives a bit easier". thanks -- PMM
