Re: [Announcement] "Exec Shield", new Linux security feature

Florian Weimer (fw@deneb.enyo.de)
Fri, 02 May 2003 20:17:25 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Linus Torvalds: "Re: Aic7xxx and Aic79xx Driver Updates"
Previous message: Urs Thuermann: "Re: [BUG] settimeofday(2) succeeds for microsecond value more than USEC_PER_SEC and for negative value"

Davide Libenzi <davidel@xmailserver.org> writes:

> Ingo, do you want protection against shell code injection ? Have the
> kernel to assign random stack addresses to processes and they won't be
> able to guess the stack pointer to place the jump.

If your software is broken enough to have buffer overflow bugs, it's
not entirely unlikely that it leaks the stack address as well (IIRC,
BIND 8 did).
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Linus Torvalds: "Re: Aic7xxx and Aic79xx Driver Updates"
Previous message: Urs Thuermann: "Re: [BUG] settimeofday(2) succeeds for microsecond value more than USEC_PER_SEC and for negative value"