In article <20150101153259.GA2442@neva>, Alexander Nasonov <alnsn%yandex.ru@localhost> wrote: >I don't remember seeing a policy on disabling jit code at securelevel >1 or higher. Is it something we should add? I am not sure that we should add it because the code it generates is tightly conrolled by the kernel. christos