Bugtraq mailing list archives

Re: Buffer overflow prevention

From: "Matt D. Harris" <vesper () depraved org>
Date: Thu, 14 Aug 2003 16:09:16 -0400

Theo de Raadt wrote:

I believe the best protection (at this time) is to combine ProPolice with
a W^X technology.

Solaris 2.6 and above also support a kernel variable which can be setvia /etc/system called "noexec_user_stack", which can make the stack foruserland processes non-executable by default. Note that this behavioris the default for 64-bit binaries in Solaris 7, 8, and 9, and thiskernel variable forces the behavior for 32-bit binaries. I run allsorts of odd software and have never had an issue with having thisalways turned on for all of my systems.

Current thread:

Re: Buffer overflow prevention, (continued)
- - Re: Buffer overflow prevention Crispin Cowan (Aug 14)
    - Re: Buffer overflow prevention Peter Busser (Aug 15)
- RE: Buffer overflow prevention Lance James (Aug 14)
  - Re: Buffer overflow prevention Patrick Dolan (Aug 14)
  - Re: Buffer overflow prevention Jedi/Sector One (Aug 14)
- Re: Buffer overflow prevention Stephen Clowater (Aug 14)
  - Re: Buffer overflow prevention Peter Busser (Aug 15)
    - Re: Buffer overflow prevention Solar Designer (Aug 15)
- Re: Buffer overflow prevention Mariusz Woloszyn (Aug 14)
  - Re: Buffer overflow prevention Theo de Raadt (Aug 14)
    - Re: Buffer overflow prevention Matt D. Harris (Aug 14)
    - Re: Buffer overflow prevention sauron (Aug 14)
  - Re: Buffer overflow prevention Timo Sirainen (Aug 14)
    - Re: Buffer overflow prevention Jedi/Sector One (Aug 14)
    - Re: Buffer overflow prevention Peter Busser (Aug 15)
  - Re: Buffer overflow prevention Jedi/Sector One (Aug 14)
    - Re: Buffer overflow prevention Miod Vallat (Aug 14)
    - Re: Buffer overflow prevention Peter Busser (Aug 15)
    - Re: Buffer overflow prevention stealth (Aug 15)
    - Re: Buffer overflow prevention Mark Tinberg (Aug 18)
    - Re: Buffer overflow prevention Crispin Cowan (Aug 18)

(Thread continues...)