Re: Buffer overflow prevention

From: noir (noirat_private)
Date: Thu Aug 14 2003 - 15:01:08 PDT

Next message: Sebastian Niehaus: "Re: [Full-Disclosure] Microsoft urging users to buy Harware Firewalls"

Previous message: Vade 79: "Re: PST Linux Advisor--------Dsh-0.24.0 in debian has a home env Buffer Overflow Vulnerability"
Maybe in reply to: Eygene A. Ryabinkin: "Buffer overflow prevention"
Next in thread: Peter Busser: "Re: Buffer overflow prevention"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I believe that Mr. Raadt meant PAX by W^X. 
We all enjoy ascii art but I wanted to note that renaming somebody 
elses work is not so ethical.

so for the real thing please consider checking: 
http://pageexec.virtualave.net/

my linux box have 0 remotely exploitable vulnerabilities in its default 
install since the begining of time and space. thanks to segmentation, ASLR 
from the PAX project.

Thanks,
- noir

-----Original Message-----
From: Theo de Raadt [mailto:deraadtat_private] 
Sent: Thursday, August 14, 2003 12:37 PM
To: Mariusz Woloszyn
Subject: Re: Buffer overflow prevention 

> I believe the best protection (at this time) is to combine ProPolice 
> with a W^X technology.

Next message: Sebastian Niehaus: "Re: [Full-Disclosure] Microsoft urging users to buy Harware Firewalls"
Previous message: Vade 79: "Re: PST Linux Advisor--------Dsh-0.24.0 in debian has a home env Buffer Overflow Vulnerability"
Maybe in reply to: Eygene A. Ryabinkin: "Buffer overflow prevention"
Next in thread: Peter Busser: "Re: Buffer overflow prevention"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Aug 14 2003 - 18:25:10 PDT