Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-07 Thread Mark Millard
On 2017-Jul-7, at 1:37 AM, Bartłomiej Rutkowski wrote: > On Thu, Jul 6, 2017 at 11:38 PM, Mark Millard wrote: > The following is only offered as a possibility for where > the 2MB idea might have came from: https://hardenedbsd.org . > I make no claim that

Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-07 Thread Bartłomiej Rutkowski
On Thu, Jul 6, 2017 at 11:38 PM, Mark Millard wrote: > The following is only offered as a possibility for where > the 2MB idea might have came from: https://hardenedbsd.org . > I make no claim that the script change is in fact > appropriate: I've not studied the issue. >

Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-06 Thread Mark Millard
The following is only offered as a possibility for where the 2MB idea might have came from: https://hardenedbsd.org . I make no claim that the script change is in fact appropriate: I've not studied the issue. Quoting https://hardenedbsd.org "Stack Clash Mitigations" dated 2017-Jun-25: FreeBSD

Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-05 Thread Bartek Rutkowski
> There are two options '9' now > > -- > Renato Botelho Yes, I am aware of it, something in my merge must have go wrong. I'll fix it first thing in the morning, because I've had a long day and I don't want to cause any more issues. If someone else feels like correcting it in meantime -

Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-05 Thread Bartek Rutkowski
> On 5 Jul 2017, at 21:05, Konstantin Belousov wrote: > > On Wed, Jul 05, 2017 at 08:52:37PM +0100, Bartek Rutkowski wrote: >> >>> On 5 Jul 2017, at 18:15, Konstantin Belousov wrote: >>> >>> On Wed, Jul 05, 2017 at 01:37:27PM +, Bartek Rutkowski

Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-05 Thread Konstantin Belousov
On Wed, Jul 05, 2017 at 08:52:37PM +0100, Bartek Rutkowski wrote: > > > On 5 Jul 2017, at 18:15, Konstantin Belousov wrote: > > > > On Wed, Jul 05, 2017 at 01:37:27PM +, Bartek Rutkowski wrote: > >> This patch adds new bsdinstall option to hardening section that allows

Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-05 Thread Bartek Rutkowski
> On 5 Jul 2017, at 18:15, Konstantin Belousov wrote: > > On Wed, Jul 05, 2017 at 01:37:27PM +, Bartek Rutkowski wrote: >> This patch adds new bsdinstall option to hardening section that allows users >> to change this behaviour to secure one and updates stack guard

Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-05 Thread Renato Botelho
On 05/07/17 10:37, Bartek Rutkowski wrote: > Author: robak (ports committer) > Date: Wed Jul 5 13:37:27 2017 > New Revision: 320674 > URL: https://svnweb.freebsd.org/changeset/base/320674 > > Log: > Add option to bsdinstall to disable insecure console, update stack guard > option > >

Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-05 Thread Konstantin Belousov
On Wed, Jul 05, 2017 at 01:37:27PM +, Bartek Rutkowski wrote: > This patch adds new bsdinstall option to hardening section that allows users > to change this behaviour to secure one and updates stack guard option so it > would set the value of relevant sysctl to 512 (2MB) What ?!

svn commit: r320674 - head/usr.sbin/bsdinstall/scripts

2017-07-05 Thread Bartek Rutkowski
Author: robak (ports committer) Date: Wed Jul 5 13:37:27 2017 New Revision: 320674 URL: https://svnweb.freebsd.org/changeset/base/320674 Log: Add option to bsdinstall to disable insecure console, update stack guard option This patch adds new bsdinstall option to hardening section that