Bug#609966: tor: Please enable hardening options
On Sat, 15 Jan 2011, berta...@ptitcanardnoir.org wrote: Irrelevant changelog. However, the 0.2.2.x tree of tor packages in debian use hardening for about a year now. Well, my point for this ticket was to include this feature ASAP in the *stable* debian package (or at least in sid and the next testing release). Seems O.2.2.x serie isn't going to be considered as stable before some time, while Tor's package and debian would benefit a lot of this feature. The changelog link was just to show that upstream authors did activate this options, and from discussions I had with them, they only did this late because they did not think about it before. I have a stable version of Tor with this options activated at compile time running for weeks now, and it behaves fine, so might be relevant to activate them in the 0.2.1 branch. It's way, way, *way* too late for squeeze. And squeeze+1 will ship with 0.2.2.x or later anyway. -- | .''`. ** Debian GNU/Linux ** Peter Palfrader | : :' : The universal http://www.palfrader.org/ | `. `' Operating System | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#609966: tor: Please enable hardening options
Package: tor Version: 0.2.1.26-6 Severity: normal User: debian-secur...@lists.debian.org Usertags: hardening Hi, Tor being a sensitive daemon facing on the internet, having it compiled with hardening options seems relevant [1]. This should mitigate some bugs like the one it has already faced in its history. I've compiled myself a version using the hardening-wrapper, and am running it since a while now without any troubles, so I guess that might be enabled at the debian package level. For more information on how to proceed, you can read instructions on the debian wiki. It's just a matter of adding the hardening-wrapper package to the build-dep and exporting DEB_BUILD_HARDENING=1 in debian/rules. Thanks. [1] http://wiki.debian.org/Hardening -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#609966: tor: Please enable hardening options
Hi, For the record, Tor's debian package distributed by torproject already includes this compile time options, since 0.2.2.14-alpha according to its changelog (https://gitweb.torproject.org/tor.git/blob/HEAD:/ChangeLog) bert. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org