Date: Tue, 20 Jun 2006 14:19:17 +0200 (CEST) From: Oliver Fromme <olli@lurza.secnetix.de> To: freebsd-security@FreeBSD.ORG Subject: Re: memory pages nulling when releasing Message-ID: <200606201219.k5KCJHlS067325@lurza.secnetix.de> In-Reply-To: <3bcb4e3f0606181309h70c08dc6l691bbb6e5b48615a@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Nick Borisov <neiro21@gmail.com> wrote: > Dag-Erling Smørgrav <des@des.no> wrote: > > "Nick Borisov" <neiro21@gmail.com> wrote: > > > Could you tell me if FreeBSD supports memory page nulling when > > > releasing it to prevent unauthorized access to data left in the page > > > after it's allocated again. > > > > Processes always get zeroed pages from the kernel. This is the case > > for all Unices, and has been for decades. > > Well, providing zeroed pages to processes is not quite similar to > explicit cleaning of pages after use as some security standards > demand. If that's what you mean, then why not simply use memset() after use? (And of course use mlock().) If that's not what you mean, then please explain _exactly_ what you mean. Best regards Oliver -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd Any opinions expressed in this message may be personal to the author and may not necessarily reflect the opinions of secnetix in any way. "With sufficient thrust, pigs fly just fine. However, this is not necessarily a good idea. It is hard to be sure where they are going to land, and it could be dangerous sitting under them as they fly overhead." -- RFC 1925
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200606201219.k5KCJHlS067325>