Re: Introducing security hardening features for Lenny
On Wed, Jan 30, 2008 at 11:41:41AM +0200, Riku Voipio wrote:
> On Tue, Jan 29, 2008 at 10:16:24PM +0100, Moritz Muehlenhoff wrote:
> > In kernels that support text ASLR, programs compiled
> > for PIE will gain full position randomization.
> For which architectures is text ASLR available? does it require
> external kernel patches? PIE means considerable system overhead
> and fatter binaries, especially for systems without large
I can only speak for the Linux kernels, but sitting in the planned -x86
git queue for mm, text ASLR was enabled for x86 and x86_64.
AFAIK, the similar RedHat and SuSE kernel patches also carry these
changes only for x86 and x86_64.