Vulnerability Development mailing list archives

Re: stackguard-like embedded protection

From: Greg KH <greg () WIREX COM>
Date: Tue, 5 Sep 2000 13:44:57 -0700

On Tue, Sep 05, 2000 at 11:21:20AM +0200, Bluefish (P.Magnusson) wrote:


From what I remember from bugtraq, it seems to be quite tricky to provide
a good patch to this problem. So I wonder, has any of these tools
(ProPolice, libsafe, StackGuard or StackShield) added anything to
combat formatation bugs, or if it's an active research area.


I know that StackGuard and ProPolice can't combat formation bugs, and I
am guessing that libsafe and StackShield can't either (once you can
write arbitrary data to any spot in memory, you can get around any of
these protections.

And yes, it is an active research area...

One nice advantage of running a box protected by StackGuard, like
Immunix OS, is the offsets in most all pre-packaged crack scripts for
the format bugs don't seem to work :)


greg k-h

--
greg@(kroah|wirex).com

Current thread:

stackguard-like embedded protection antirez (Sep 04)
- Re: stackguard-like embedded protection antirez (Sep 04)
  - Re: stackguard-like embedded protection Bluefish (P.Magnusson) (Sep 05)
    - Re: stackguard-like embedded protection Greg KH (Sep 05)
    - Re: stackguard-like embedded protection antirez (Sep 06)
    - Re: stackguard-like embedded protection Crispin Cowan (Sep 06)
    - Re: stackguard-like embedded protection typo (Sep 05)
    - Re: stackguard-like embedded protection Crispin Cowan (Sep 05)
    - Re: stackguard-like embedded protection Benjamin Karas (Sep 05)
    - Re: stackguard-like embedded protection Bluefish (P.Magnusson) (Sep 05)
    - Re: stackguard-like embedded protection Greg KH (Sep 05)
    - Re: stackguard-like embedded protection Juliano Rizzo (Sep 06)
    - Re: stackguard-like embedded protection Crispin Cowan (Sep 05)
    - Re: stackguard-like embedded protection H D Moore (Sep 05)

(Thread continues...)