Re: Unexecutable Stack / Buffer Overflow Exploits...

Matija Nalis (mnalis@jagor.srce.hr)
2 Jan 2000 17:48:49 GMT

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Manfred Spraul: "Re: Oops in 2.2.14pre17"
Previous message: Alexandre Hautequest: "2.3.35: unresolved symbols"

On 30 Dec 1999 21:37:37 +0100, Jakma, Paul <Paul.Jakma@compaq.com> wrote:
>IMO non-exe stack should be a compile option, so that those who need/like
>paranoid setups can have that small extra bit of security. Granted, most
>people don't need it, and most people shouldn't use it. And support for
>various trampoline formats should be kept to a minimum. But it should be an
>option.

It *IS* an option. You need to apply an patch to enable that option. Since
you are skilled sysadmin, you know how to do that. Most newbie-users for
which this would cause an problem don't know how to download and apply that
patch, so no problem for them.

As to why it is not in the Linus kernel - it is not because Linus said no.
If you think you know better, you fork your kernel, call it secure-linux or
something and maintain it. As simple as that.

-- Opinions above are GNU-copylefted.

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: Manfred Spraul: "Re: Oops in 2.2.14pre17"
Previous message: Alexandre Hautequest: "2.3.35: unresolved symbols"