Needs system hardening

[sergiobenrocha2]

Nightingale needs hardening the libraries, since it is a security issue:

/usr/lib/nightingale/nightingale-bin
/usr/lib/nightingale/xulrunner/components/libimgicon.so
/usr/lib/nightingale/xulrunner/js
/usr/lib/nightingale/xulrunner/libfreebl3.so
/usr/lib/nightingale/xulrunner/libmozjs.so
/usr/lib/nightingale/xulrunner/libnss3.so
/usr/lib/nightingale/xulrunner/libnssckbi.so
/usr/lib/nightingale/xulrunner/libnssdbm3.so
/usr/lib/nightingale/xulrunner/libnssutil3.so
/usr/lib/nightingale/xulrunner/libplc4.so
/usr/lib/nightingale/xulrunner/libplds4.so
/usr/lib/nightingale/xulrunner/libsmime3.so
/usr/lib/nightingale/xulrunner/libsoftokn3.so
/usr/lib/nightingale/xulrunner/libsqlite3.so
/usr/lib/nightingale/xulrunner/libssl3.so
/usr/lib/nightingale/xulrunner/libxpcom.so
/usr/lib/nightingale/xulrunner/libxul.so
/usr/lib/nightingale/xulrunner/mangle
/usr/lib/nightingale/xulrunner/mozilla-xremote-client
/usr/lib/nightingale/xulrunner/nsinstall
/usr/lib/nightingale/xulrunner/plugin-container
/usr/lib/nightingale/xulrunner/plugins/libnullplugin.so
/usr/lib/nightingale/xulrunner/plugins/libunixprintplugin.so
/usr/lib/nightingale/xulrunner/regxpcom
/usr/lib/nightingale/xulrunner/shlibsign
/usr/lib/nightingale/xulrunner/updater
/usr/lib/nightingale/xulrunner/xpcshell
/usr/lib/nightingale/xulrunner/xpidl
/usr/lib/nightingale/xulrunner/xpt_dump
/usr/lib/nightingale/xulrunner/xpt_link
/usr/lib/nightingale/xulrunner/xulrunner-bin

Some of them are embedded library, see issue #315

[thebecwar]

Some of these libraries must be embedded, otherwise in the best case they crash. In the worst case using incompatible libraries would cause worse security issues than using older libraries. (Stack overflows, heap corruption, etc.)

Maybe I misunderstand what you mean by "needs hardening the libraries". Could you elaborate?

[darealshinji]

See #315 (comment)

[freaktechnik]

See also nightingale-media-player/nightingale-deps#18