From owner-freebsd-security@FreeBSD.ORG Fri Jun 9 23:30:09 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 070E016A46F; Fri, 9 Jun 2006 23:30:08 +0000 (UTC) (envelope-from keramida@ceid.upatras.gr) Received: from igloo.linux.gr (igloo.linux.gr [62.1.205.36]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2216843D7E; Fri, 9 Jun 2006 23:30:05 +0000 (GMT) (envelope-from keramida@ceid.upatras.gr) Received: from gothmog.pc (host5.bedc.ondsl.gr [62.103.39.229]) (authenticated bits=128) by igloo.linux.gr (8.13.6/8.13.6/Debian-1) with ESMTP id k59NTbWN002621 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sat, 10 Jun 2006 02:29:43 +0300 Received: from gothmog.pc (gothmog [127.0.0.1]) by gothmog.pc (8.13.6/8.13.6) with ESMTP id k59NVmVd088400; Sat, 10 Jun 2006 02:31:49 +0300 (EEST) (envelope-from keramida@ceid.upatras.gr) Received: (from giorgos@localhost) by gothmog.pc (8.13.6/8.13.6/Submit) id k59NVmOw088399; Sat, 10 Jun 2006 02:31:48 +0300 (EEST) (envelope-from keramida@ceid.upatras.gr) Date: Sat, 10 Jun 2006 02:31:48 +0300 From: Giorgos Keramidas To: Chris Message-ID: <20060609233148.GA88285@gothmog.pc> References: <20060526153422.GB25953@obiwan.tataz.chchile.org> <20060609095751.GI1273@obiwan.tataz.chchile.org> <4489DCAE.3070005@overflow.no> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4489DCAE.3070005@overflow.no> X-Hellug-MailScanner: Found to be clean X-Hellug-MailScanner-SpamCheck: not spam, SpamAssassin (score=-3.096, required 5, autolearn=not spam, ALL_TRUSTED -1.80, AWL 1.30, BAYES_00 -2.60) X-Hellug-MailScanner-From: keramida@ceid.upatras.gr X-Spam-Status: No Cc: freebsd-security@freebsd.org, freebsd-current@freebsd.org, Jeremie Le Hen Subject: Re: [fbsd] Integrating ProPolice/SSP into FreeBSD X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jun 2006 23:30:09 -0000 On 2006-06-09 16:40, Chris wrote: >Jeremie Le Hen wrote: >> On Fri, May 26, 2006 at 05:34:22PM +0200, Jeremie Le Hen wrote: >>> Hi, >>> first sorry for cross-posting but I thought this patch might interest >>> -CURRENT users as well as people concerned by security. >>> >>> I wrote a patch that integrates ProPolice/SSP into FreeBSD, one step >>> further than it has been realized so far. >>> >>> It is available here : >>> http://tataz.chchile.org/~tataz/FreeBSD/SSP/ >> >> Hi list, >> I haven't got much feedback so far. I would be glad if any people >> who have been using this patch told be if they have been faced with >> some problems. >[...] > I'm using it successfuly with the stackp-gap and the random mmap > on 6.1-RELEASE. No problems at all really :) Except that i want a nob > for gcc to use the protection by default. We discussed this in another > email. You can always use `/etc/make.conf' to set it globally, right?