Re: Non-executable stack
From: db (db_at_traceroute.dk)
Date: 10/27/05
- Previous message: Darren Reed: "Re: ipf stopped working on 5.3"
- In reply to: jimmy_at_inet-solutions.be: "Re: Non-executable stack"
- Next in thread: Jimmy Scott: "Re: Non-executable stack"
- Reply: Jimmy Scott: "Re: Non-executable stack"
- Reply: Mike Silbersack: "Re: Non-executable stack"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: jimmy@inet-solutions.be, freebsd-security@freebsd.org Date: Thu, 27 Oct 2005 15:11:35 +0000
On Thursday 27 October 2005 06:35, you wrote:
> I don't think it will ever be in FreeBSD, but I used ProPolice in the past:
I really hope it will. AFAIK OpenBSD implemented this in late 2002 when 3.2
was released. I can see why FreeBSD doesn't want software protection of the
stack on systems like ia32, but on ia64 we have hardware support, so why not
be able to build a kernel with stack (and heap?) protection?
> http://www.research.ibm.com/trl/projects/security/ssp/buildfreebsd.html
>
> The patch should be for 5.x in general, I don't use it anymore since some
> ports will break, if you play with it you can disable it by default and
> enable it explicit when you are willing to compile a binary with it.
Ok thanks, but I was looking for a kernel level patch. Btw which ports will
break?
br
db
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Darren Reed: "Re: ipf stopped working on 5.3"
- In reply to: jimmy_at_inet-solutions.be: "Re: Non-executable stack"
- Next in thread: Jimmy Scott: "Re: Non-executable stack"
- Reply: Jimmy Scott: "Re: Non-executable stack"
- Reply: Mike Silbersack: "Re: Non-executable stack"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
