From owner-freebsd-security  Wed Dec  1 13: 6:41 1999
Delivered-To: freebsd-security@freebsd.org
Received: from cs.usask.ca (cs.usask.ca [128.233.130.77])
	by hub.freebsd.org (Postfix) with ESMTP id 98DAC151D6
	for <freebsd-security@FreeBSD.ORG>; Wed,  1 Dec 1999 13:06:10 -0800 (PST)
	(envelope-from nmm367@cs.usask.ca)
Received: from penguin2.usask.ca (penguin2.usask.ca [128.233.130.131])
	by cs.usask.ca (8.9.0/8.9.0) with ESMTP id PAA00321;
	Wed, 1 Dec 1999 15:01:59 -0600 (CST)
Received: from localhost (nmm367@localhost)
	by penguin2.usask.ca (8.9.3/8.9.0) with ESMTP id OAA02507;
	Wed, 1 Dec 1999 14:57:54 -0600
Date: Wed, 1 Dec 1999 14:57:54 -0600 (CST)
From: Naiden M Markachev <nmm367@cs.usask.ca>
To: Robert Watson <robert+freebsd@cyrus.watson.org>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: stack overflow and security
In-Reply-To: <Pine.BSF.3.96.991201135544.4689B-100000@fledge.watson.org>
Message-ID: <Pine.LNX.4.10.9912011455240.2491-100000@penguin2.usask.ca>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Wed, 1 Dec 1999, Robert Watson wrote:

> I don't know if the original message author meant it or not, but the
> author used the words "stack overflow" and not "buffer overflow".  In my
> mind, "stack overflow" implies walking off the bottom of the available
> stack space, and is usually the result of excessive recursion or
> implicit allocation of something inappropriate in the function call stack.

I am sorry. It was my missunderstanding of the original question. 

> 
> > Matt wrote:
> > > 
> > > can any one help to explain how stack over security exploit. does anyone
> > > know how to fix it? How it happens?
> > > 
> > > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > > with "unsubscribe freebsd-security" in the body of the message
> > 
> > Here is a site that answers your question..... at least the "how it
> > happens" part. 
> > http://www.helloworld.ca/1999/04-apr/attack_class.html
> > 
> > 
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-security" in the body of the message
> > 
> 
> 
>   Robert N M Watson 
> 
> robert@fledge.watson.org              http://www.watson.org/~robert/
> PGP key fingerprint: AF B5 5F FF A6 4A 79 37  ED 5F 55 E9 58 04 6A B1
> TIS Labs at Network Associates, Safeport Network Services
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message