On Mon, 3 Jul 2000, Gregory Maxwell wrote:
>
> If you check the archives, I was one of the cheif participants arguing for
> the Solar Designer patch when it first came out (three years ago?). Since
> then it's been clearly demonstrated that the patch does little good
> against an attacker thats prepaired for it (stackguard and libsafe do much
> better though).
>
> Go get libsafe, it's got example 'sploits that work against the Solar
> patch and it's alot cleaner...
I am going to look at libsafe; I had previously heard that it was for
x86 platforms only and I'm really looking for a portable solution so I can
use on both x86, sgi, sparc-32, and sparc-64 platforms I have here. But I
see source is available so I'll take a look.
I don't disagree that the non-executable user stack area can be gotten
around, so can Stackguard, and I haven't looked at libsafe yet but I don't feel
comfortable counting on anything as a complete solution. The more layers the
better.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Fri Jul 07 2000 - 21:00:13 EST