what about reading packaging guidelines before throw another long-running root-process into the distribution as default even after a F18->F19 yum-upgrade? https://fedoraproject.org/wiki/Packaging:Guidelines?rd=Packaging/Guidelines#PIE the word "must" is no opt-in If your package meets any of the following criteria you MUST enable the PIE compiler flags: * Your package is long running * Your package runs as root [root@srv-rhsoft:~]$ hardening-check /usr/sbin/alsactl /usr/sbin/alsactl: Position Independent Executable: no, normal executable! Stack protected: yes Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: no, not found! [root@srv-rhsoft:~]$ ps aux | grep alsa root 642 0.0 0.0 16740 1416 ? SNs Sep15 0:00 /usr/sbin/alsactl -s -n 19 -c -E ALSA_CONFIG_PATH=/etc/alsa/alsactl.conf --initfile=/lib/alsa/init/00main rdaemon
the same still in F20 :-(
hardening-check /usr/sbin/alsactl /usr/sbin/alsactl: Position Independent Executable: yes Stack protected: yes Fortify Source functions: yes (some protected functions found) Read-only relocations: yes Immediate binding: yes
uhm - this bugreport was for F19, at least F20 is current for many months - so please don't ignore the "Version" information and bugreports