svn commit: r320674 - head/usr.sbin/bsdinstall/scripts
Mark Millard
markmi at dsl-only.net
Fri Jul 7 18:06:16 UTC 2017
On 2017-Jul-7, at 1:37 AM, Bartłomiej Rutkowski <robak at freebsd.org> wrote:
> On Thu, Jul 6, 2017 at 11:38 PM, Mark Millard <markmi at dsl-only.net> wrote:
> The following is only offered as a possibility for where
> the 2MB idea might have came from: https://hardenedbsd.org .
> I make no claim that the script change is in fact
> appropriate: I've not studied the issue.
>
> Not that it matters at all, but just to clear out the doubts, no this change was not inspired by HardenedBSD in any way, I'd even say it was the other way around ;)
https://hardenedbsd.org "Stack Clash Mitigations" posting was dated: 2017-Jun-25
(This is clearly after they had worked on the changes.)
Your -r320674 check in date: 2017-Jul-5
https://reviews.freebsd.org/D9700 was earlier and has
for Diff 30173:
"Update the stack guard option to new sysctl behavior": 2017-Jun-28
(The prior diff [26537] does not have the change.)
2017-Jun-28 is shortly after the hardenedbsd.org posting,
not before.
So it was not obvious to me that you might have influenced
hardenedBSD's changes. Sounds more like full independence
to me now.
I do not know if you picked 2MB based on
> Qualys' recommendation to use a minimum of 1MB
or not. (Quoted from hardenedbsd's article.)
===
Mark Millard
markmi at dsl-only.net
More information about the svn-src-head
mailing list