[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: wish list

To: securedistros@nl.linux.org
Subject: Re: wish list
From: Milan Pikula - WWW <www@fornax.elf.stuba.sk>
Date: Thu, 10 Jun 1999 10:31:21 +0200 (MEST)
In-Reply-To: <375EBAE2.ABF57B76@cse.ogi.edu>
Reply-To: securedistros@nl.linux.org
Sender: owner-securedistros@humbolt.nl.linux.org

On Wed, 9 Jun 1999, Crispin Cowan wrote:

W>However, it does seem that the attacks you describe will all be detected and stopped by
W>StackGuard.  Perhaps now (if he's listening :-) Solar Designer will stop referring to
W>StackGuard as a kludge :-)

yes, StackGuard seems like a great thing, which have to be included in
any secure distribution. Unlike the non-executable stack patch (which is
IMHO fine because the stack have no reason to be executable, but is not
fine when presented as a security cure) this one really solves the problem.
The only disadvantage is a non-standard stack frame, which may cause
problems in some cases (sorry if I got it wrong).

It will be nice to see it working with medusa, which is designed to catch
the _unknown_ attacks.

Someone said here something about 'shutting down the firewall'. Do
StackGuard have some possibility to start an active defense?

bye,
	Milan

--
Milan Pikula, WWW. Finger me for Geek Code.
http://fornax.elf.stuba.sk/~www, www@fornax.elf.stuba.sk
.. dajte mi pewnu linku a pohnem zemegulow ..




-
Securedistros: A common list for all secured Linux distributions
Archive:       http://humbolt.nl.linux.org/lists/

Follow-Ups:
- Re: wish list
  - From: Crispin Cowan <crispin@cse.ogi.edu>

References:
- Re: wish list
  - From: Crispin Cowan <crispin@cse.ogi.edu>

Prev by Date: RE: Be careful...
Next by Date: Re: Be careful...
Prev by thread: Re: wish list
Next by thread: Re: wish list
Index(es):
- Date
- Thread