<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnerability Development: Re: "Moving" Stack: my poor return address!

Re: "Moving" Stack: my poor return address!

From: Alexander Klimov <alserkli_at_inbox.ru>
Date: Wed, 2 Aug 2006 12:14:07 +0300 (IDT)

On Mon, 31 Jul 2006, Jack C wrote:
> I'm running on Fedora 5. Is this a security thing that's new in the past
> 2 years or so since I've coded one of these?

Yes, many distributions now use by default address space
randomization.

> Is there any way I can either (1) make the stack sit still so I can
> point into it

<http://gcc.gnu.org/wiki/Randomization>:
To disable randomization for a shell session:
setarch $(uname -p) -RL bash
To disable randomization for the whole system, add this to
/etc/sysctl.conf:
kernel.randomize_va_space = 0
After that, run 'sysctl -p' as root to update the kernel without
rebooting.

> or (2) find out where it is during execution?

Just printf address of some local variable (they are allocated in
stack).

-- 
Regards,
ASK

Received on Aug 02 2006

This message: [ Message body ]
Next message: Steve Bonds: "Re: "Moving" Stack: my poor return address!"
Previous message: Andrea Purificato - bunker: "Re: "Moving" Stack: my poor return address!"
In reply to: Jack C: ""Moving" Stack: my poor return address!"
Next in thread: Steve Bonds: "Re: "Moving" Stack: my poor return address!"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos