Date: Fri, 7 Jul 2017 10:59:33 -0700 From: Mark Millard <markmi@dsl-only.net> To: =?utf-8?Q?Bart=C5=82omiej_Rutkowski?= <robak@freebsd.org> Cc: svn-src-head@freebsd.org Subject: Re: svn commit: r320674 - head/usr.sbin/bsdinstall/scripts Message-ID: <55AF105C-66D8-4A6A-AF26-BF6D2B59C142@dsl-only.net> In-Reply-To: <CAGFrfxa2fcpFVaHrbthaA4WhAZTA=wf5HvxunUukTjzbp2AUug@mail.gmail.com> References: <9691CBDC-9C55-4E05-AFA2-9FEFD5E1B21F@dsl-only.net> <CAGFrfxa2fcpFVaHrbthaA4WhAZTA=wf5HvxunUukTjzbp2AUug@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2017-Jul-7, at 1:37 AM, Bartłomiej Rutkowski <robak@freebsd.org> wrote: > On Thu, Jul 6, 2017 at 11:38 PM, Mark Millard <markmi@dsl-only.net> wrote: > The following is only offered as a possibility for where > the 2MB idea might have came from: https://hardenedbsd.org . > I make no claim that the script change is in fact > appropriate: I've not studied the issue. > > Not that it matters at all, but just to clear out the doubts, no this change was not inspired by HardenedBSD in any way, I'd even say it was the other way around ;) https://hardenedbsd.org "Stack Clash Mitigations" posting was dated: 2017-Jun-25 (This is clearly after they had worked on the changes.) Your -r320674 check in date: 2017-Jul-5 https://reviews.freebsd.org/D9700 was earlier and has for Diff 30173: "Update the stack guard option to new sysctl behavior": 2017-Jun-28 (The prior diff [26537] does not have the change.) 2017-Jun-28 is shortly after the hardenedbsd.org posting, not before. So it was not obvious to me that you might have influenced hardenedBSD's changes. Sounds more like full independence to me now. I do not know if you picked 2MB based on > Qualys' recommendation to use a minimum of 1MB or not. (Quoted from hardenedbsd's article.) === Mark Millard markmi at dsl-only.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?55AF105C-66D8-4A6A-AF26-BF6D2B59C142>