hardening-no-bindnow

This package provides an ELF binary that lacks the "bindnow" linker flag.

This is needed (together with "relro") to make the "Global Offset Table" (GOT) fully read-only. The bindnow feature trades startup time for improved security. Please consider enabling this feature or consider overriding the tag (possibly with a comment about why).

If you use dpkg-buildflags, you may have to add hardening=+bindnow or hardening=+all to DEB_BUILD_MAINT_OPTIONS.

The relevant compiler flags are set in LDFLAGS.

Severity:	info
Experimental:	false

See also

• https://wiki.debian.org/Hardening

• list of all the affected packages
• the source of this tag

Generated by Lintian SSG v0.7.0-28-g559962f (lintian v2.118.1) on Sat, 07 Sep 2024 19:15:02 UTC - Source code and bugs
Copyright © 1998-2024 Lintian authors

Hosted by CLUB1