* Santiago R.R. [30/11/2017 17:22] :
>
> ca-certificates-java's postinst would call paxrat or paxctl, if
> available.
>
> Opinions?
While I'm not sure how realistic it is to expect all packages that
execute java in their postinst scripts to become paxctl-aware,
that would certainly work.
El 30/11/17 a las 11:56, Emmanuel Seyman escribió:
> Package: paxrat
> Version: 1.0-3+b1
>
> When I install openjdk-8-jre-headless, it installs ca-certificates-java as
> a dependency. ca-certificates-java's postinst is called and killed by grsec
> because it calls "java -Xmx64m -jar [...]".
>
>
Package: paxrat
Version: 1.0-3+b1
When I install openjdk-8-jre-headless, it installs ca-certificates-java as
a dependency. ca-certificates-java's postinst is called and killed by grsec
because it calls "java -Xmx64m -jar [...]".
Once that happens, paxrat is then executed and paxctl is run on
3 matches
Mail list logo
