ASLR and other hardening methods

Carsten Mattner carstenmattner at gmail.com
Sat Jan 18 01:19:11 PST 2014


Theo's talk at ruBSD in December reminded me to compare the various
Unixes, Linux and Windows in terms of exploit mitigation features.

It was a big surprise to me that DragonflyBSD misses out.

See for yourself at
https://en.wikipedia.org/wiki/Address_space_layout_randomization
The impression is that Windows and OpenBSD and Linux+PaX implement
the most complete feature set.

There's an effort to get ASLR into FreeBSD 11, so what's the plan
for DragonflyBSD. For a forward-thinking and otherwise progressive
BSD it'd be a shame to miss out on exploit mitigation.

What's the plan?



More information about the Users mailing list