Re: protection against buffer overflows

To: Vincent <glaume@enseirb.fr>
Cc: debian-security@lists.debian.org
Subject: Re: protection against buffer overflows
From: Alvin Oga <aoga@Maggie.Linux-Consulting.com>
Date: Fri, 18 Jan 2002 12:33:21 -0800 (PST)
Message-id: <[🔎] Pine.LNX.3.96.1020118122652.762A-100000@Maggie.Linux-Consulting.com>
In-reply-to: <[🔎] 20020118202016.GF1031@sothis.glaume.mds>

hi ya vincent
 
> I'm working on buffer overflows these days, and more precisely the possible
> methods to avoid them.
> It seems that the most used tools to prevent exploits based on buffer
> overflows are Libsafe, OpenWall, StackGuard... and maybe Saint Jude.
> 
> Has anyone any interesting comments about theses methods ? 
> 

just a quickie comment... 

libsafe seems to work across the board on most major linux distro
and takes 5 minutes to do it all
	http://www.Linux-Sec.net/harden/libsafe.uhow2.txt

openwall works only w/ 2.2.x kernels unless they've released 2.4.x stuff

stackguard was beyond my scope of "patience"...
	( part of immunix ?? )
	- and it modifies gcc  which i didnt like it doing...

	- sometimes compiling sources already fails with generic
	environments so didnt want to deal with a modified gcc

other kernel patches/methodologies
	http://www.Linux-Sec.net/Harden/kernel.gwif.html

thanx
alvin

Reply to:

Follow-Ups:
- Re: protection against buffer overflows
  - From: Harald Skoglund <haraldms@hekta.stud.iet.hist.no>

References:
- protection against buffer overflows
  - From: Vincent <glaume@enseirb.fr>

Prev by Date: protection against buffer overflows
Next by Date: Re: protection against buffer overflows
Previous by thread: protection against buffer overflows
Next by thread: Re: protection against buffer overflows
Index(es):
- Date
- Thread