Re: When did Debian decide to enable PIE by default?

2017-08-12 Thread tomas
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sat, Aug 12, 2017 at 01:11:43PM +0200, Pascal Hambourg wrote: > Le 10/08/2017 à 10:00, to...@tuxteam.de a écrit : [...] > >PIE is "position independent executable": it's about using PIC in the > >Executable > > Sorry, but I fail to see the

Re: When did Debian decide to enable PIE by default?

2017-08-12 Thread Pascal Hambourg
Le 10/08/2017 à 10:00, to...@tuxteam.de a écrit : On Wed, Aug 09, 2017 at 08:22:58PM -0400, Gene Heskett wrote: Aha, another name for PIC, which I've only been writing code that uses it for 32 years. Also known as PCR, for Program Counter Relative. Such code can be loaded into memory and

Re: When did Debian decide to enable PIE by default?

2017-08-10 Thread 慕 冬亮
On 08/09/2017 10:48 AM, Gene Heskett wrote: > On Wednesday 09 August 2017 10:31:48 Thomas Schmitt wrote: > >> Hi, >> >> 慕 冬亮 wrote: >>> When does Debian Team, or Security Team decide to enable PIE by >>> default? >> I guess it was one year ago. At least that's the

Re: When did Debian decide to enable PIE by default?

2017-08-10 Thread tomas
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, Aug 09, 2017 at 08:22:58PM -0400, Gene Heskett wrote: > On Wednesday 09 August 2017 10:52:26 慕 冬亮 wrote: > > > On 08/09/2017 10:48 AM, Gene Heskett wrote: > > > On Wednesday 09 August 2017 10:31:48 Thomas Schmitt wrote: > > >> Hi, > > >> > >

Re: When did Debian decide to enable PIE by default?

2017-08-10 Thread tomas
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, Aug 09, 2017 at 02:49:06PM +, 慕 冬亮 wrote: > > > On 08/09/2017 10:31 AM, Thomas Schmitt wrote: > > Hi, > > > > 慕 冬亮 wrote: > >> When does Debian Team, or Security Team decide to enable PIE by default? > > I

Re: When did Debian decide to enable PIE by default?

2017-08-10 Thread Joe
On Wed, 9 Aug 2017 20:45:06 -0400 Gene Heskett wrote: > > > It is NOT a new invention by any means. Motorola's micro-processor in > the first TRS-80 Color Computer, the MC6809E in the early 1980's was > built with that in mind. And I've been writing assembly code that >

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread Gene Heskett
On Wednesday 09 August 2017 12:43:14 Thomas Schmitt wrote: > Hi, > > Gene Heskett wrote: > > > what the heck is PIE? > > Dan Ritter and others wrote: > > https://en.wikipedia.org/wiki/Position-independent_code > > It seems to have caused only moderate trouble. > Insofar it did not cause such a

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread Gene Heskett
On Wednesday 09 August 2017 10:52:26 慕 冬亮 wrote: > On 08/09/2017 10:48 AM, Gene Heskett wrote: > > On Wednesday 09 August 2017 10:31:48 Thomas Schmitt wrote: > >> Hi, > >> > >> 慕 冬亮 wrote: > >>> When does Debian Team, or Security Team decide to enable PIE by > >>>

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread 慕 冬亮
On 08/09/2017 10:31 AM, Thomas Schmitt wrote: > Hi, > > 慕 冬亮 wrote: >> When does Debian Team, or Security Team decide to enable PIE by default? > I guess it was one year ago. At least that's the dates one can see on >

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread Pascal Hambourg
Le 09/08/2017 à 17:05, Dan Ritter a écrit : On Wed, Aug 09, 2017 at 10:48:24AM -0400, Gene Heskett wrote: Interesting Thomas, but what the heck is PIE? It is explained in the link posted by Thomas. It's a security measure. No, PIE is not a security measure per se. It just allows to map

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread Thomas Schmitt
Hi, Gene Heskett wrote: > > what the heck is PIE? Dan Ritter and others wrote: > https://en.wikipedia.org/wiki/Position-independent_code It seems to have caused only moderate trouble. Insofar it did not cause such a spectacular echo as other novelties and strategic decisions. 慕 冬亮

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread Tony van der Hoff
On 09/08/17 15:48, Gene Heskett wrote: > Interesting Thomas, but what the heck is PIE? I know about PAE, but PIE? > Whats it do? Searching the above wiki returned only this thread. > > Thanks, you too. >> Have a nice day :) >> >> Thomas > > Cheers, Gene Heskett Position-independent

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread Dan Ritter
On Wed, Aug 09, 2017 at 10:48:24AM -0400, Gene Heskett wrote: > On Wednesday 09 August 2017 10:31:48 Thomas Schmitt wrote: > > > Hi, > > > > 慕 冬亮 wrote: > > > When does Debian Team, or Security Team decide to enable PIE by > > > default? > > > > I guess it was one

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread Gene Heskett
On Wednesday 09 August 2017 10:31:48 Thomas Schmitt wrote: > Hi, > > 慕 冬亮 wrote: > > When does Debian Team, or Security Team decide to enable PIE by > > default? > > I guess it was one year ago. At least that's the dates one can see on >

Re: When did Debian decide to enable PIE by default?

2017-08-09 Thread Thomas Schmitt
Hi, 慕 冬亮 wrote: > When does Debian Team, or Security Team decide to enable PIE by default? I guess it was one year ago. At least that's the dates one can see on https://wiki.debian.org/Hardening/PIEByDefaultTransition Have a nice day :) Thomas

When did Debian decide to enable PIE by default?

2017-08-09 Thread 慕 冬亮
Hello all, I upgraded to Stretch several days ago. When I traced the instruction or debuged program, I found the program compiled by default is enabled PIE. When does Debian Team, or Security Team decide to enable PIE by default? --- My best regards to you. No