Re: Exec-Shield vs. PaX

To: Peter Busser <peter@adamantix.org>, Ingo Molnar <mingo@elte.hu>
Cc: debian-devel@lists.debian.org, spender@grsecurity.net
Subject: Re: Exec-Shield vs. PaX
From: pageexec@freemail.hu
Date: Thu, 06 Nov 2003 17:13:33 +0100
Message-id: <[🔎] 3FAA813D.26031.ECEE228@localhost>
Reply-to: pageexec@freemail.hu
In-reply-to: <[🔎] Pine.LNX.4.56.0311052140500.1025@earth>
References: <[🔎] 20031105192356.GA24483@adamantix.org>

> > It is in fact a simulation of a multithreaded application. [...]
> 
> The test incorrectly assumes that thread stacks are executable. I suspect
> we both agree that it's desirable to have thread stacks non-executable as
> well.

while i agree with you on this one, it is in stark contrast to what you
said earlier:

> there's nothing wrong about an executable stack though. It's been part of
> Linux ever since.

also, the test does not only demonstrate that thread stacks are executable
or not, it demonstrates a fundemental design flaw in Exec-Shield: whenever
an executable region is created in the address space, *everything* below
that becomes executable as well. i believe it is important that Exec-Shield
users are aware of this flaw, could you write a test for this as well please?

Reply to:

Follow-Ups:
- Re: Exec-Shield vs. PaX
  - From: Ingo Molnar <mingo@elte.hu>

References:
- Re: Exec-Shield vs. PaX
  - From: Peter Busser <peter@adamantix.org>
- Re: Exec-Shield vs. PaX
  - From: Ingo Molnar <mingo@elte.hu>

Prev by Date: Re: Exec-Shield vs. PaX
Next by Date: Bug#219447: Networking/PCMCIA startup issues (sarge)
Previous by thread: Re: Exec-Shield vs. PaX
Next by thread: Re: Exec-Shield vs. PaX
Index(es):
- Date
- Thread