Re: Buffer overflow prevention
From: Theo de Raadt (deraadt_at_cvs.openbsd.org)
Date: 08/19/03
- Previous message: Russ: "RE: Windows Update: A single point of failure for the world's economy?"
- Maybe in reply to: Eygene A. Ryabinkin: "Buffer overflow prevention"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: cwidmer@iiic.ethz.ch Date: Tue, 19 Aug 2003 12:14:47 -0600
> i don't care about other peoples war. but:
>
> > W^X was invented because we saw the need for it. We had no idea that
> > anyone else was working in the same area.
>
> i think it is somewhat strange. there realy smart people start building
> something before they do some research and look if someone else is
> doing something similar?
PAX was not really published in anything that I read. Compare it to
stackghost, a usenix security paper, which we have put some effort at
integrating.
Our tact was to support it first on cpu's that had a proper X bit in
their pte. Ie, sparc64 and alpha and such. Solving the problem on
x86 was not on our radar until, lemme think, perhaps while we were
eating curry during Usenix Monterey at that Irish pub....
As one of our developers said yesterday:
<miod> more exactly, we heard of pax when they started bitching
- Previous message: Russ: "RE: Windows Update: A single point of failure for the world's economy?"
- Maybe in reply to: Eygene A. Ryabinkin: "Buffer overflow prevention"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
