Re: Seeking hardening flag / blhc expoert
- Date: Fri, 5 Apr 2019 22:17:16 +0300
- From: Otto Kekäläinen <otto@xxxxxxxxxx>
- Subject: Re: Seeking hardening flag / blhc expoert
So apparently the 'D_FORTIFY_SOURCE=2' is in CPPFLAGS (not read by
cmake) but not in CXXFLAGS (read by cmake).
So maybe I should define?
This is the current state of mysqld, should I be happy with this or is
it relevant that all functions are protected?
hardening-check --verbose --color mysqld
Position Independent Executable: yes
Stack protected: yes
Fortify Source functions: yes (some protected functions found)
Read-only relocations: yes
Immediate binding: yes