[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Stack-smashing protection

I've read in slashdot 
(http://bsd.slashdot.org/article.pl?sid=02/12/02/2035207) that openbsd has 
included stack-smashing protection using the ProPolice 
(http://www.trl.ibm.com/projects/security/ssp/) patch for GCC 3.2

I think it would be a great idea to use this patch with debian too as soon as 
gcc becomes the compiler by default. Protecting the entire system from this 
kind of bugs would really be a great security step forward. Would somebody 
make some kind of statistics of how many of this year's bugs wouldn't have 
made the system vulnerable with this patch?

Though there is about of 8% performane overhead I think it is worth using 
this. And more now that gcc makes programs about 8% faster ;-)

Reply to: