> However, all major Linux distributions without exceptions enable > "moderate" hardening by default for very good reasons, and all of them > can run on eeePC without issues. > > If your aim is not to run NixOS on arduino, or little embedded MIPS or > RISC-V machines, it does not matter at all. If you want to run on this ... or Intel Atom ... > can of machine, you know what you are doing and you know how to tune > your code anyway.
At least for Atoms hardening does produce a qualitative difference. I'm not sure why. I assume that things that fit into cache without hardening stop fitting into it with hardening. Cheers, Jan _______________________________________________ nix-dev mailing list [email protected] http://lists.science.uu.nl/mailman/listinfo/nix-dev
