[31162] in bugtraq
Re: Buffer overflow prevention
daemon@ATHENA.MIT.EDU (Crispin Cowan)
Thu Aug 14 12:45:36 2003
Message-ID: <3F3ACAD7.9020303@immunix.com>
Date: Wed, 13 Aug 2003 16:33:43 -0700
From: Crispin Cowan <crispin@immunix.com>
MIME-Version: 1.0
To: dolan@cc.admin.unt.edu
In-Reply-To: <200308131320.03312.dolan@cc.admin.unt.edu>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Patrick Dolan wrote:
>There is a flag for the Gnu C/C++ compilers, -fstack-protector, that will
>implement ProPolice stack protection. It should prevent stack smashing
>techniques.
>
That is not actually in the standard GCC; it is in a forked GCC that
OpenBSD chooses to ship.
We (Immunix) are in the process of trying to make StackGuard (the
original) meet all of the criteria required for acceptance into GCC. At
the GCC Summit <http://www.gccsummit.org/2003/> in May, we presented a
StackGuard talk
<http://www.gccsummit.org/2003/view_abstract.php?talk=31> on that topic.
Crispin
--
Crispin Cowan, Ph.D. http://immunix.com/~crispin/
Chief Scientist, Immunix http://immunix.com
http://www.immunix.com/shop/
