From owner-freebsd-security@FreeBSD.ORG  Wed Feb  4 23:33:25 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5CDFA16A4CE
	for <freebsd-security@freebsd.org>;
	Wed,  4 Feb 2004 23:33:25 -0800 (PST)
Received: from duke.boxke.be (duke.boxke.be [62.213.198.10])
	by mx1.FreeBSD.org (Postfix) with SMTP id EFA4843D1D
	for <freebsd-security@freebsd.org>;
	Wed,  4 Feb 2004 23:33:22 -0800 (PST)
	(envelope-from admin@inet-solutions.be)
Received: (qmail 29860 invoked from network); 5 Feb 2004 07:33:21 -0000
Received: from unknown (HELO webmail.boxke.be) (127.0.0.1)
  by duke.boxke.be with SMTP; 5 Feb 2004 07:33:21 -0000
Received: from 195.95.26.125
        (SquirrelMail authenticated user postmaster@inet-solutions.be)
        by webmail.boxke.be with HTTP;
        Thu, 5 Feb 2004 08:33:21 +0100 (CET)
Message-ID: <1085.195.95.26.125.1075966401.squirrel@webmail.boxke.be>
Date: Thu, 5 Feb 2004 08:33:21 +0100 (CET)
From: "Jimmy Scott" <admin@inet-solutions.be>
To: freebsd-security@freebsd.org
User-Agent: SquirrelMail/1.4.1
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Priority: 3
Importance: Normal
Subject: using libparanoia
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Feb 2004 07:33:25 -0000

Hi there,

I was looking for stack smashing protection under freebsd,
so i found libparanoia (/usr/ports/security/libparanoia), i had only one
question using the normal 'make install' (so no copy-to-libc).

If i add in /ert/make.conf:
CFLAGS= -O -pipe -lparanoia -L/usr/local/lib
COPTFLAGS= -O -pipe -lparanoia -L/usr/local/lib

Will EVERYTHING build from that time (including kernel/userland/ports),
be protected by libparanoia? if not, what will be?

Because when using copy-to-libc i guess i have to reinstall the port every
time i cvsup src-all + i do not build ports on any production server and
'make package' does not include the copy-to-libc procedure.

Greetz,


Jimmy Scott