[Linux-disciples] PaX and Exec Shield
Stephen R Laniel
steve at laniels.org
Mon Apr 18 11:32:00 EDT 2005
I hadn't heard about PaX and Exec Shield before this
article:
http://shorl.com/gotesegyhehi
It looks like Exec Shield is a kernel patch that does for
Linux what Data Execution Prevention does for Windows --
namely, exploit the hardware-level flag that marks memory as
non-executable, as a way to avoid various buffer-overflow
bugs.
I thought this information might interest some folks. PaX's
homepage is here:
http://pax.grsecurity.net/
Exec Shield is discussed here:
http://en.wikipedia.org/wiki/Exec_Shield
Looks like Debian's been looking at PaX for a while, so I'm
behind the times:
http://shorl.com/folydipyfrugre
Debian has been arguing over Exec Shield for a long time,
for reasons that are unclear to me:
http://shorl.com/gysimydynygo
--
Stephen R. Laniel
steve at laniels.org
+(617) 308-5571
http://laniels.org/
More information about the Linux-disciples
mailing list