[aur-general] TU application: Ivy Foster
Levente Polyak
anthraxx at archlinux.org
Sun Jan 28 20:33:50 UTC 2018
Hey, good luck and such
Just noticed there are packages that don't properly LDFLAGS resulting in
binaries without full RELRO.
Its good to always checksec the binaries once creating or adopting a new
package and see if everything was setup properly to respect hardening
and other flags like generic archs.
namcap will have such feature soonish
Everything else i had on my list was already mentioned by Eli.
libbulletml:
- whats up with LDFLAGS from makepkg.conf? like -znow?
if there are options that don't work its better to remove them
from makepkg.conf LDFLAGS but always use the variable
cgo-git:
- does not respect LDFLAGS leading to a binary without full relro
cheers,
Levente
More information about the aur-general
mailing list