Re: How to enable/disable security features on mmap() ?

From: Arjan van de Ven
Date: Thu Dec 08 2005 - 09:13:51 EST


On Thu, 2005-12-08 at 15:10 +0100, Emmanuel Fleury wrote:
> Hi,
>
> For educational purpose (I'm teaching software security) I would like to
> be able to compile several kernels with or without features such as:
>
> * Non-executable stack
> * Stack address randomization
> * Environment address randomization (char **envp)
> * Dynamic library randomization (cat /proc/self/map)
>
> So, is there a way to do such thing easily, or should I write patches by
> myself ?

realistically the first one is easy if your hw supports the NX bit
(x86/x86-64). Some of the other randomisations are present in the 2.6.x
kernels.

Or run a kernel from Fedora Core, or a kernel with the PaX patches to
get all you're asking for.


-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/