Date: Sat, 20 Jun 1998 12:57:26 -0400 (EDT) From: jtb <jtb@pubnix.org> To: Nicholas Charles Brawn <ncb05@uow.edu.au> Cc: security@FreeBSD.ORG Subject: Re: non-executable stack? Message-ID: <Pine.SOL.3.96.980620125445.24819A-100000@pubnix.org> In-Reply-To: <Pine.SOL.3.96.980620211437.13013A-100000@banshee.cs.uow.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
It could just be me, but why are we discussing solaris 2.6 kernel options
on the FreeBSD security mailing list, if anyone wants to discuss teh
potential of instituting a similar patch in FreeBSD I'm all ears, but I
still don't see how discussing solaris kernel options has anything to do
with FreeBSD security.
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Jonathan T. Bowie ADM w00w00 WSD
jobe@sekurity.org jtb@pubnix.org jobe@dataforce.net
Independant Security Developer
Home: (603)436-5698 "I'd hate to advocate drugs, sex, alcohol, or
Cell: (603)553-6697 violence... to any one, but they've worked
for me." -- Hunter S. Thompson
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
On Sat, 20 Jun 1998, Nicholas Charles Brawn wrote:
> I was pondering the following after reading about solaris 2.6's
> non-executable stack option.
>
> 1. How feasible is it to implement a non-executable stack kernel option?
> 2. If it *is* feasible, what do people think of a sysctl-based interface
> to enable/disenable it?
> 3. If both 1 & 2 were implemented, how about making it impossible to
> disenable at say.. securelevel >= 1?
>
> If I remember the discussions on bugtraq right, a non-exec patch isn't a
> cure-all for buffer overflow attacks. However it would be an overall
> security enhancement and prevent many script-based attacks.
>
> What are peoples thoughts on this?
>
> Nick
>
> --
> Email: ncb05@uow.edu.au - http://rabble.uow.edu.au/~nick
> Key fingerprint = DE 30 33 D3 16 91 C8 8D A7 F8 70 03 B7 77 1A 2A
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe security" in the body of the message
>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.SOL.3.96.980620125445.24819A-100000>