diff options
author | nia <nia@pkgsrc.org> | 2021-09-27 14:31:55 +0000 |
---|---|---|
committer | nia <nia@pkgsrc.org> | 2021-09-27 14:31:55 +0000 |
commit | 5bb1b996449e8e39b8295cdc412ccefa1f62e53a (patch) | |
tree | 2f4afed0f72e5ea928f37bccafd90bccb674c78c /mk | |
parent | e4a43b4eb4e53db21c0abdedfe41c89e835d2741 (diff) | |
download | pkgsrc-5bb1b996449e8e39b8295cdc412ccefa1f62e53a.tar.gz |
mk: Bump default hardening options.
Diffstat (limited to 'mk')
-rw-r--r-- | mk/defaults/mk.conf | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/mk/defaults/mk.conf b/mk/defaults/mk.conf index b7df6532331..f4c5af3dd89 100644 --- a/mk/defaults/mk.conf +++ b/mk/defaults/mk.conf @@ -1,4 +1,4 @@ -# $NetBSD: mk.conf,v 1.318 2021/05/30 23:41:05 khorben Exp $ +# $NetBSD: mk.conf,v 1.319 2021/09/27 14:31:55 nia Exp $ # # This file provides default values for variables that may be overridden @@ -234,7 +234,7 @@ PKGSRC_RUN_TEST?= no # Possible: yes, no # Default: no -PKGSRC_MKPIE?= no +PKGSRC_MKPIE?= yes # If no, create regular executables. Otherwise create PIE (Position Independent # Executables, on supported platforms). This option is necessary to fully # leverage ASLR as a mitigation for security vulnerabilities. @@ -271,7 +271,7 @@ PKGSRC_USE_FORTIFY?= strong # # Keywords: fortify FORTIFY_SOURCE -PKGSRC_USE_RELRO?= no +PKGSRC_USE_RELRO?= full # Link with RELRO by default (on supported platforms). This makes the # exploitation of some security vulnerabilities more difficult in some cases. # Possible values: @@ -281,7 +281,7 @@ PKGSRC_USE_RELRO?= no # # Keywords: relro -PKGSRC_USE_SSP?= yes +PKGSRC_USE_SSP?= strong # Configure this to enable stack smashing protection (on supported platforms). # Possible values: # no: Do not pass any stack protection flags |