git.notmuchmail.org Git - notmuch/commit

]> git.notmuchmail.org Git - notmuch/commit

author	Daniel Kahn Gillmor <dkg@fifthhorseman.net>
	Mon, 10 Jun 2019 01:35:03 +0000 (04:35 +0300)
committer	David Bremner <david@tethera.net>
	Tue, 11 Jun 2019 10:24:20 +0000 (07:24 -0300)
commit	cd733b079f7038d73cbaa88fa5ade40794f670bd
tree	3ce469a676f8beef171b85771845ea090a86eed4	tree \| snapshot
parent	00c63bf7364778a75591fe494e029233736af04d	commit \| diff

debian: enable build hardening features

Debian's build hardening toolchain options produce binary artifacts
that are more resistant to compromise. The most visible change for
notmuch today is likely to be the addition of the "bindnow" linker
flag, which contributes to making the "Global Offset Table" fully
read-only.

See https://wiki.debian.org/Hardening for more details.

Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>

debian/rules

diff | blob | history

Notmuch source code

RSS Atom