On Thu July 9 2009, yersinia wrote:You pay a security prize if you disable prelink, because it also performs
> But something one have to pay a security prize on not disabling it : it
> render impossible to have a
> centralizzated security integrity management (e.g. rfc.sf.net for example)
> or one have to skip from check the prelink binary. Very bad i think.
address space randomization:
Perhaps something have changed from 2006 - try yourself. on your RHEL/fedora if ASLR depends only on prelink.
But the last word on this is on jackub/Ulrich/Molnar. If i was wrong it is nice to know.