now obviously not all flavours of C are created equal, so one has to carefully evaluate what's worth using and what isn't. for the PaX flavours the defining goal is always something to do with "make the generated code more secure, even if the original source code wasn't written with security in mind". whether it's something you or anyone else values is of course not up to me to decide, but i did decide that it was worth for me (and many others) to pursue this route.
as for bugreports, we've always handled PaX/grsec bugreports ourselves and directed users upstream only when we could determine that the given problem existed there as well.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds