Re: [Announcement] "Exec Shield", new Linux security feature

• Next message: Linus Torvalds: "Re: Aic7xxx and Aic79xx Driver Updates"
• Previous message: Urs Thuermann: "Re: [BUG] settimeofday(2) succeeds for microsecond value more than USEC_PER_SEC and for negative value"
• Next in thread: Davide Libenzi: "Re: [Announcement] "Exec Shield", new Linux security feature"
• Reply: Davide Libenzi: "Re: [Announcement] "Exec Shield", new Linux security feature"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Davide Libenzi <davidel@xmailserver.org> writes:

> Ingo, do you want protection against shell code injection ? Have the
> kernel to assign random stack addresses to processes and they won't be
> able to guess the stack pointer to place the jump.

If your software is broken enough to have buffer overflow bugs, it's
not entirely unlikely that it leaks the stack address as well (IIRC,
BIND 8 did).
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Linus Torvalds: "Re: Aic7xxx and Aic79xx Driver Updates"
• Previous message: Urs Thuermann: "Re: [BUG] settimeofday(2) succeeds for microsecond value more than USEC_PER_SEC and for negative value"
• Next in thread: Davide Libenzi: "Re: [Announcement] "Exec Shield", new Linux security feature"
• Reply: Davide Libenzi: "Re: [Announcement] "Exec Shield", new Linux security feature"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed May 07 2003 - 22:00:16 EST