Re: Unexecutable Stack / Buffer Overflow Exploits...

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Michael Alan Dorman: "2.2.14pre1[678] breaks syslog? (was: Re: Linux 2.2.14pre18)"
• Previous message: Alan Cox: "Re: 2.2.14pre17 hangup with SMP during ifconfig"
• Next in thread: Gregory Maxwell: "Re: Unexecutable Stack / Buffer Overflow Exploits..."
• Reply: Gregory Maxwell: "Re: Unexecutable Stack / Buffer Overflow Exploits..."

[...]

> Seriously, no one here would dare replace a real fix with a stack
> paperbag.

OK.

[...]

> With the advent of scripted identifying and autorooting, it's possible for
> an attacker to root dozens, if not hunderds, of systems within hours of an
> exploit release.

Note that they _don't_ write this themselves, they get them prepackaged
from somewhere. So the next epidemy includes identifying nonexec-stack
machines, and has specific exploits for them. You gained nothing in the
long run, everybody lost. Sure, it may make you somewhat safer now. So
apply the patches.

> So even if I had my beeper connected to bugtrack and every underground
> cracker IRC channel, I could still be rooted before I got to the keyboard.

Nonexecutable stack won't change that a bit.

-- 
Horst von Brand                             vonbrand@sleipnir.valparaiso.cl
Casilla 9G, Viņa del Mar, Chile                               +56 32 672616

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Michael Alan Dorman: "2.2.14pre1[678] breaks syslog? (was: Re: Linux 2.2.14pre18)"
• Previous message: Alan Cox: "Re: 2.2.14pre17 hangup with SMP during ifconfig"
• Next in thread: Gregory Maxwell: "Re: Unexecutable Stack / Buffer Overflow Exploits..."
• Reply: Gregory Maxwell: "Re: Unexecutable Stack / Buffer Overflow Exploits..."