Re: Stopping buffer-overflow security exploits using page protection

From: Alan Cox (alan@lxorguk.ukuu.org.uk)
Date: Mon Jul 31 2000 - 12:26:55 EST

Next message: Chuck Lever: "Re: [PATCH] Decrease hash table memory overhead"
Previous message: Vojtech Pavlik: "Re: [PATCH] new input patch to test"
In reply to: Florian Weimer: "Re: Stopping buffer-overflow security exploits using page protection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> I fear we will have to face buffer overflows and funky coding style
> for another 30 years.

The evidence from the MS world is that buffer overflows are the _least_ of
your worries in a component based environment. Complete inability to build
a coherent security model combined with people who wave their arms around when
asked hard questions about it are most of the problem.

Nobody in the windows world is much into buffer overflows right now, you dont
need them to tear apart a windows system. There's a lesson there for gnome.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Chuck Lever: "Re: [PATCH] Decrease hash table memory overhead"
Previous message: Vojtech Pavlik: "Re: [PATCH] new input patch to test"
In reply to: Florian Weimer: "Re: Stopping buffer-overflow security exploits using page protection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Mon Jul 31 2000 - 21:00:34 EST