grsecurity in kernel?

Timo Juhani Lindfors timo.lindfors at iki.fi
Wed Dec 29 23:39:47 CET 2010


Glenn <glenn.mh.dk at gmail.com> writes:
>>What has grsecurity to do with debugging?
>
> On there home page they write:
>
> # Prevention of arbitrary code execution, regardless of the technique
> used (stack smashing, heap corruption, etc)
> # Prevention of arbitrary code execution in the kernel
> # Randomization of the stack, library, and heap bases
> # Kernel stack base randomization
> # Protection against exploitable null-pointer dereference bugs in the kernel
>
> E.g. Some buffer overflows will be stopped.

Randomization generally makes debugging harder, not easier.




More information about the community mailing list