[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Buffer overflow prevention

To: bugtraq@securityfocus.com
Subject: Re: Buffer overflow prevention
From: noir <noir@gsu.linux.org.tr>
Date: Fri, 15 Aug 2003 01:01:08 +0300 (EEST)


I believe that Mr. Raadt meant PAX by W^X. 
We all enjoy ascii art but I wanted to note that renaming somebody 
elses work is not so ethical.

so for the real thing please consider checking: 
http://pageexec.virtualave.net/

my linux box have 0 remotely exploitable vulnerabilities in its default 
install since the begining of time and space. thanks to segmentation, ASLR 
from the PAX project.

Thanks,
- noir

-----Original Message-----
From: Theo de Raadt [mailto:deraadt@cvs.openbsd.org] 
Sent: Thursday, August 14, 2003 12:37 PM
To: Mariusz Woloszyn
Subject: Re: Buffer overflow prevention 

> I believe the best protection (at this time) is to combine ProPolice 
> with a W^X technology.

Prev by Date: Re: PST Linux Advisor--------Dsh-0.24.0 in debian has a home env Buffer Overflow Vulnerability
Next by Date: Re: Buffer overflow prevention
Prev by thread: Re: Buffer overflow prevention
Next by thread: Re: Buffer overflow prevention
Index(es):
- Date
- Thread