RE: protection against buffer overflows

To: Steve Johnson <steve@webninja.com>
Cc: debian-security@lists.debian.org
Subject: RE: protection against buffer overflows
From: Alvin Oga <aoga@Maggie.Linux-Consulting.com>
Date: Wed, 23 Jan 2002 15:02:54 -0800 (PST)
Message-id: <[🔎] Pine.LNX.3.96.1020123150016.4669A-100000@Maggie.Linux-Consulting.com>
In-reply-to: <[🔎] 1011825803.9612.4.camel@monkey>

hi ya steve...

when you write a program... you usually pass variables around...

the system keeps a "stack of return address/variables" ..what to do
next...

the rootkits tries to make the return address of "foo" program
to give them root access..

- so much for my simplied one-liners..

- a simplified picture...

http://www.cse.ogi.edu/DISC/projects/immunix/StackGuard/usenixsc98_html/node5.html

have fun linuxing
alvin

On 23 Jan 2002, Steve Johnson wrote:

> this may seem trivial but i've never really understood how a buffer
> overflow happens and effects your system, i have some knowledge of 
> programming, but not much at low levels.  like dealing direct with
> memory or devices(other than using standard pointers and reading and
> writing to devices thruough file pointers).  anyone to offer any
> explanation will be showered with greatness!

Reply to:

References:
- RE: protection against buffer overflows
  - From: Steve Johnson <steve@webninja.com>

Prev by Date: RE: protection against buffer overflows
Next by Date: RE: protection against buffer overflows
Previous by thread: RE: protection against buffer overflows
Next by thread: RE: protection against buffer overflows
Index(es):
- Date
- Thread