[Bug 220245] [NEW PORT] security/hardening-check: Check binaries for security hardening features
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sat Jun 24 08:17:20 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=220245
Bug ID: 220245
Summary: [NEW PORT] security/hardening-check: Check binaries
for security hardening features
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Severity: Affects Only Me
Priority: ---
Component: Individual Port(s)
Assignee: freebsd-ports-bugs at FreeBSD.org
Reporter: amutu at amutu.com
Created attachment 183757
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=183757&action=edit
hardening-check.shar
Hardening-check is a perl script to verify that the resulting binary does, in
fact, have hardening features enabled, you can use it to test each ELF binary
and the output will show if the binary has position independent executable,
stack protected, fortify source functions(not supported on FreeBSD now), read
only relocations or immediate binding supported.
WWW: https://wiki.debian.org/Hardening
QA:
portlint -AC
WARN: Makefile: [16]: possible direct use of command "perl" found. use ${PERL}
instead.
WARN: Makefile: using hyphen in PORTNAME. consider using PKGNAMEPREFIX and/or
PKGNAMESUFFIX.
0 fatal errors and 2 warnings found.
poudriere testport pass on 11.0R-amd64
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list