Dailydave mailing list archives

Re: Theo's presentation on exploit prevention

From: Matt Hargett <matt () use net>
Date: Tue, 14 Sep 2004 12:44:31 +0000

Mathieu Sauve-Frankel wrote:

I'm not sure I see anything for web application oriented bugs, either.
OpenBSD doesn't ship any web apps as part of our base system.This isn't a class of vulnerabilities we are currently concerned with.


Fair enough :)

I'm curious what the performance hit of their stack/heap checking is,though -- anyone have a URL for info on that?
There are notes on the performance hits in the presentation.


Thanks!

I noticed that you seem to have ignored the signal/exception handlingissue. Any thoughts on that?

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://www.immunitysec.com/mailman/listinfo/dailydave

Current thread:

Theo's presentation on exploit prevention Mordy Ovits (Sep 13)
- Re: Theo's presentation on exploit prevention Kurt Seifried (Sep 13)
  - Re: Theo's presentation on exploit prevention Halvar Flake (Sep 13)
    - Re: Theo's presentation on exploit prevention Rodney Thayer (Sep 13)
    - Re: Theo's presentation on exploit prevention Chris Kuethe (Sep 13)
    - Re: Theo's presentation on exploit prevention Rodney Thayer (Sep 13)
- Re: Theo's presentation on exploit prevention Chris Kuethe (Sep 13)
- Re: Theo's presentation on exploit prevention Matt Hargett (Sep 14)
  - Message not available
    - Re: Theo's presentation on exploit prevention Matt Hargett (Sep 14)
- <Possible follow-ups>
- Theo's presentation on exploit prevention pageexec (Sep 15)
  - Re: Theo's presentation on exploit prevention Dave Aitel (Sep 15)