Re: StackGuard'ed Debian?
On Tue, Feb 01, 2000 at 02:07:46AM +0100, Christian Hammers wrote:
> On Tue, 01.02.00 00:51 +0200, kay wrote:
> > this is a patch to gcc which adds pretty good buffer overflow protection to
> > all programs compiled with it. There is a whole RedHat 5.2 distribution
> > compiled with this available for download at www.immunix.org (there is also
> I don't have the cpu capacity of even building my own system but I would
> be interested how stable those guarded binaries are.
> We thought about using them at work but decided against it since the
> program is so unknown.
I'm quite interested in building such a distriubution from scratch, but
I'm missing the knowledge how to do so. And I have the CPU capacity at
home (2x333 celerons and a k6-2 300 are idling are lot).
If somebody was able to implement some kind of stackbuildd, I'll
certainly would run it on at least one those machines in a chrootet
environment (heh, sounds like fun and like buying a new harddisc ;)).
> I would second a proposal of building a "test" distribution on one of
> the public-servers and maybe somewhen (when harddiscs get cheaper :-))
> distribute a stack-guarded distribution or at least guarded network
> daemons (ftp,finger,smtp,http etc)
Harddiscs are less difficult to get then the amount of bandwidth needed
for such a project here. :)
Alexander Reelsen http://joker.rhwd.owl.de
"Bugs ? Features !", -- rrdtool(1), Section BUGS