Re: A way to prevent buffer overflow exploits? (was: "Any user

From: Mark Wooding (mdwat_private)
Date: Wed Aug 05 1998 - 09:40:31 PDT

Next message: James Garnett: "Re: Solaris 2.5.1/2.6 fingerd bug"

Previous message: Joe: "Re: Object tag crashes Internet Explorer 4.0"
Next in thread: Olaf Seibert: "Re: A way to prevent buffer overflow exploits? (was: "Any user"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Crispin Cowan <crispinat_private> wrote:

> John D. Hardin wrote:
>
> > Or how about automatically allocating space just for local strings? This
> > would take care of buffer overflows with minimal impact, wouldn't it?
>
> That would break the C standard, which states that local variables are
> allocated in consecutive memory, with optional padding between them.

Cobblers.

You're thinking of structure allocation: the standard places no
restrictions on where implementations choose to place variables with
automatic storage duration.

-- [mdw]

Next message: James Garnett: "Re: Solaris 2.5.1/2.6 fingerd bug"
Previous message: Joe: "Re: Object tag crashes Internet Explorer 4.0"
Next in thread: Olaf Seibert: "Re: A way to prevent buffer overflow exploits? (was: "Any user"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:11:28 PDT