Re: How to enable/disable security features on mmap() ?

On Thu, 8 Dec 2005, Emmanuel Fleury wrote:

> Arjan van de Ven wrote:
>>
>> well it's a /proc/ variable already! So you can just turn it off
>> entirely at runtime. (what is better is that you use the setarch program
>> to turn it off for selected programs though...)
>
> I knew it was a stupid question ! I fooled myself once more ! ;-)
> I'll take a look at this familly of variables and at the proc entries.
>
> Thanks a lot !
> --
> Emmanuel Fleury

In reference to the random-stack patch....

Executing the following program on linux-2.6.13.4:

#include <stdio.h>

int main()
{
     int foo;
     printf("%p\n", &foo);
     return 0;
}

... a few thousand times and sorting its output shows
the stack varies from:
 	0xbf7fe144 -> 0xbffff674

Isn't this too much?  I thought the random-stack patch was
only supposed to vary it a page or 64k at most. This looks
like some broken logic because it varies almost 8 megabytes!
No wonder some of my user's database programs sometimes seg-fault
and other times work perfectly fine. I think this is incorrect
and shows a serious bug (misbehavior).

Cheers,
Dick Johnson
Penguin : Linux version 2.6.13.4 on an i686 machine (5589.55 BogoMips).
Warning : 98.36% of all statistics are fiction.
.

****************************************************************
The information transmitted in this message is confidential and may be privileged.  Any review, retransmission, dissemination, or other use of this information by persons or entities other than the intended recipient is prohibited.  If you are not the intended recipient, please notify Analogic Corporation immediately - by replying to this message or by sending an email to [email protected] - and destroy all copies of this information, including any attachments, without reading or disclosing them.

Thank you.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Follow-Ups:
- Re: How to enable/disable security features on mmap() ?
  - From: Arjan van de Ven <[email protected]>
- Re: How to enable/disable security features on mmap() ?
  - From: Emmanuel Fleury <[email protected]>

References:
- How to enable/disable security features on mmap() ?
  - From: Emmanuel Fleury <[email protected]>
- Re: How to enable/disable security features on mmap() ?
  - From: Arjan van de Ven <[email protected]>
- Re: How to enable/disable security features on mmap() ?
  - From: Emmanuel Fleury <[email protected]>
- Re: How to enable/disable security features on mmap() ?
  - From: Emmanuel Fleury <[email protected]>
- Re: How to enable/disable security features on mmap() ?
  - From: Arjan van de Ven <[email protected]>
- Re: How to enable/disable security features on mmap() ?
  - From: Emmanuel Fleury <[email protected]>

Prev by Date: Re: stat64 for over 2TB file returned invalid st_blocks
Next by Date: Re: [PATCH] x86_64: Display HPET timer option
Previous by thread: Re: How to enable/disable security features on mmap() ?
Next by thread: Re: How to enable/disable security features on mmap() ?
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]