The proposed solution has been working fine for over a decade. Any software incompatibilities were fixed years ago (i.e. Mailman) due to the feature's presence in grsecurity. But I have no interest in what the kernel developers end up doing (or more likely not doing). Every feature of grsecurity they've replicated has provided weaker security for no added compatibility benefit. So much for choosing the correct fixes.