Re: sacrificing performance for confusion
From: Jeff Roberson (jroberson_at_chesapeake.net)
Date: 06/27/03
- Previous message: D. J. Bernstein: "sacrificing performance for confusion"
- In reply to: D. J. Bernstein: "sacrificing performance for confusion"
- Next in thread: Chuck Swiger: "Re: sacrificing performance for confusion"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 26 Jun 2003 21:04:24 -0400 (EDT) To: "D. J. Bernstein" <djb@cr.yp.to>
On 26 Jun 2003, D. J. Bernstein wrote:
> > Using VMM protection to forbid code execution within the DATA, BSS, heap,
> > and stack (if one can) mitigates against a common class of problems--
>
> I don't believe you. Show me a real program that's (1) vulnerable if
> data/bss/heap/stack are executable and (2) invulnerable otherwise.
>
> Yes, attacks are often written to take advantage of executable stacks;
> but, in every case I've investigated, the programs would still have been
> vulnerable with non-executable stacks.
They would be vulnerable to a denial of service but not to any privilige
gaining exploit.
Please go spread FUD somewhere else. We're not going to put all of your
sections in the same page. Nobody cares.
Cheers,
Jeff
_______________________________________________
freebsd-performance@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-performance
To unsubscribe, send any mail to "freebsd-performance-unsubscribe@freebsd.org"
- Previous message: D. J. Bernstein: "sacrificing performance for confusion"
- In reply to: D. J. Bernstein: "sacrificing performance for confusion"
- Next in thread: Chuck Swiger: "Re: sacrificing performance for confusion"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
