Vulnerability Development: Re: Beating memory address randomization (secuirty) features in Unix/Linux

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: Beating memory address randomization (secuirty) features in Unix/Linux

From: Don Bailey <don.bailey () gmail com>
Date: Mon, 3 Apr 2006 12:09:53 -0600

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I believe they're talking about distros WITH RANDOMIZATION IE PAX 
enabled.


Obviously. My point is that the original poster didn't
seem to be concerned with more advanced issues,
like PaX. Rather, they just wanted to learn how to
evade the basic stack base randomization code
employed on many popular Linux distros.

Let them worry about things like PaX later.

Also, tell me how often is PaX/grsec employed?
Clearly, not often. Distros aren't even interested in
deploying it as much as they are interested in
the new vanilla kernel way of integrating security
into the core code. That code still has a long way
to go.

Don "north" Bailey

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.0.5 (Build 5050)

iQA/AwUBRDFk8l/Ie1ANMtLuEQK9+ACfbxWb4zSGmebcNduqXtqPyBk3PGAAoMJR
rdo4rvXNExT1UBj3OnF8P/EE
=iFTb
-----END PGP SIGNATURE-----

By Date By Thread

Current thread:

Re: Beating memory address randomization (secuirty) features in Unix/Linux sean (Apr 03)
- Re: Beating memory address randomization (secuirty) features in Unix/Linux Don Bailey (Apr 03)
  - Re: Beating memory address randomization (secuirty) features in Unix/Linux Mike Davis (Apr 03)
- <Possible follow-ups>
- Re: Beating memory address randomization (secuirty) features in Unix/Linux Andrea Purificato - bunker (Apr 03)