I wanted to write this post because I want the Fedora project to have better security throughout their operating systems. I believe the first step to doing that, is to use another memory allocator that mitigates heap memory corruption and use-after-frees, alongside lots of other features to harden one of the most important functions in all modern systems as far as I am aware. hardened_malloc[1], by the GrapheneOS project, fits this description perfectly. Using this benefits not just the Fedora project, but it will also push other distributions to using hardened_malloc, and then the Linux ecosystem will benefit as a whole from the provided security. Good security is an essential part of good privacy, so this will also benefit the privacy of all Linux distributions.
Given the above paragraph, I want you to promote this thread[2] to anyone who is interested in security and privacy. You can also help by testing hardened_malloc on your own Linux systems and sharing your results with me through any means of contact, so that I can replicate the behaviour and make bug reports where necessary. For that, please see this page[3] for my preferred methods of contact.
I don't think I'll be able to attract a lot of people with this post on my own, so boosting will be massively appreciated. Thank you for reading this until this point. This isn't my longest toot yet but I feel like this is my most passionate, as I deeply care about security, GrapheneOS and the Fedora project. Again, thank you! (^_^)
[1]: https://grapheneos.org/features#exploit-mitigations
[2]: https://discussion.fedoraproject.org/t/migrating-to-another-malloc-implementation/173172
[3]: https://amadaluzia.is-a.dev/contact
