Hacker News new | ask | show | jobs
by dwheeler 1273 days ago
I'd love to see this as easily enabled in mainstream distros like Debian. Perhaps by being incorporated into the major libraries? Memory safety problems are a huge problem and this looks like it would counter many of the heap related ones. Thoughts?
1 comments
Seirdy 1273 days ago
The devs are especially interested in a distribution of musl with hardened_malloc integrated for easy static linking.

Until then, LD_PRELOAD is your friend (assuming you build with semantic interposition).

link
_8j50 1272 days ago
LD_PRELOAD is my enemy! It's a glibc thing rootkits like to abuse. I know there are legit uses for it but it has no place in a hardened environment.

How taboo is it to just patch glibc and maintain it your own repo? Or even make it public.

link