Buffer overflow?
Hiten Pandya
hmp at nxad.com
Thu Jul 31 23:39:19 PDT 2003
Jeroen Ruigrok/asmodai wrote:
-On [20030801 08:02], Richard Coleman (richardcoleman at xxxxxxxxxxxxxx) wrote:
Have you given any thought to pulling in the changes that OpenBSD made
to harden against buffer overflows (i.e. canary checking)? They've
added some pretty serious mechanisms to make it harder to exploit buffer
overflows (and made it turned on by default).
IIRC Hiten is busy working on getting the OpenBSD non-exec stack code
working on DragonFly.
I have sussed out the signal trampoline code and how it was
changed for IRIX binary emulation in other (NeT|Open) BSDs.
I am gonna be off to holiday from next week or so; once I get
back, I will resume my efforts on the non-exec stack for DFly.
FWIW, I have also had my eye on the binary checksumming code
that was put in Open/NetBSD.
Cheers.
--
Hiten Pandya
hmp at xxxxxxxx
http://hmp.serverninjas.com/
More information about the Kernel
mailing list