[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

StackGuard'ed Debian?

Hello people,

I guess you have all heard of StackGuard and Immunix. In case you are not -
this is a patch to gcc which adds pretty good buffer overflow protection to
all programs compiled with it. There is a whole RedHat 5.2 distribution
compiled with this available for download at www.immunix.org (there is also
more info on StackGuard there - go and see if you're interested). Because
of the methods used, this patch breaks certain programs (ld.so and the Linux
kernel most notably). It is also unclear whether it works on other
architectures besides IA32.

Is it possible to re-build some of the key components of Debian with this?
And, as it is GPL, could someone package it so that users can build secured
programs themselves? IMHO it is worth all the work.

P.S. I'm not subscribed to debian-devel; pleace CC to me replies.

key ID: 1024D/F00A7E3F (DSS)    user ID: kay <kay@phreedom.org>
fingerprint: DDCC 1A8C 30C5 8C7B C7E3  8808 02C3 1A5D F00A 7E3F

Attachment: pgpcwnUlWfNsY.pgp
Description: PGP signature

Reply to: