[4276] in bugtraq
Re: 2nd Linux kernel patch to remove stack exec
daemon@ATHENA.MIT.EDU (Andreas Borchert)
Mon Apr 14 05:09:08 1997
Date: Mon, 14 Apr 1997 09:12:31 +0200
Reply-To: Andreas Borchert <borchert@MATHEMATIK.UNI-ULM.DE>
From: Andreas Borchert <borchert@MATHEMATIK.UNI-ULM.DE>
X-To: reece@TAZ.NCEYE.NET
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <19970413180430.30010.qmail@taz.nceye.net> from Bryan Reece at
"Apr 13, 97 06:04:30 pm"
Bryan Reece <reece@TAZ.NCEYE.NET> wrote:
> Wouldn't it be a better idea to patch crt0 and the function entry and
> exit code to generate a magic cookie a word or so long at startup,
> write this cookie just below the return address on entry, and test it
> before returning, dying horribly if it's not correct anymore?
No -- this is far too expensive. The other proposal has the advantage
of not slowing down all applications and of not requiring recompilation.
Andreas.
--
_______________________________________________________________________________
Andreas Borchert, Universitaet Ulm, SAI, Helmholtzstr. 18, 89069 Ulm, Germany
E-Mail: borchert@mathematik.uni-ulm.de
WWW: http://www.mathematik.uni-ulm.de/sai/borchert/
Phone: +49 731/502-3572 (university)
+49 7336/5896 (home)
Fax: +49 731/502-3579
PGP key available via ``finger borchert@laborix.mathematik.uni-ulm.de''
