On Sun, Dec 27, 2009 at 10:13:29PM +0100, Julien Cristau wrote: > Hi Jacob, > > On Sun, Dec 27, 2009 at 16:19:35 +0100, Jacob Appelbaum wrote: > > > +# To prevent some kinds of exploitation at run time, fix up the program's > > +# got table to be read only (also reorders structures) after the first > > program > > +# load. eg: ld -z relro -z now > > +LDFLAGS += -z relro -z now > > + > > I think you want > LDFLAGS += -Wl,-z,relro -Wl,-z,now > > LDFLAGS are passed to the compiler, not directly to ld. > > How portable to non-gnu ld are these flags? >
I'm guessing these options are pretty gnu-centric. Mac OS X's ld doesn't recognize the '-z' option. Jake, can you clarify what you mean by "some kinds of exploitation?" -- Christopher Davis Mangrin Remailer Admin PGP: 0x0F8DA163 ------------------------------------------------------------------------------ This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev _______________________________________________ Polipo-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/polipo-users
