From owner-freebsd-security  Wed Nov 10 20:14:32 1999
Delivered-To: freebsd-security@freebsd.org
Received: from rover.village.org (rover.village.org [204.144.255.49])
	by hub.freebsd.org (Postfix) with ESMTP id 2982E14DBA
	for <freebsd-security@FreeBSD.ORG>; Wed, 10 Nov 1999 20:14:27 -0800 (PST)
	(envelope-from imp@harmony.village.org)
Received: from harmony.village.org (harmony.village.org [10.0.0.6])
	by rover.village.org (8.9.3/8.9.3) with ESMTP id VAA99006;
	Wed, 10 Nov 1999 21:14:26 -0700 (MST)
	(envelope-from imp@harmony.village.org)
Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id VAA09777; Wed, 10 Nov 1999 21:14:26 -0700 (MST)
Message-Id: <199911110414.VAA09777@harmony.village.org>
To: "Harry M. Leitzell" <Harry_M_Leitzell@cmu.edu>
Subject: Re: stack protecting 
Cc: Paul Hart <hart@iserver.com>, Andre Gironda <andre@sun4c.net>,
	freebsd-security@FreeBSD.ORG
In-reply-to: Your message of "Wed, 03 Nov 1999 21:41:48 EST."
		<Pine.SOL.3.96L.991103195319.1577A-100000@unix7.andrew.cmu.edu> 
References: <Pine.SOL.3.96L.991103195319.1577A-100000@unix7.andrew.cmu.edu>  
Date: Wed, 10 Nov 1999 21:14:25 -0700
From: Warner Losh <imp@village.org>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <Pine.SOL.3.96L.991103195319.1577A-100000@unix7.andrew.cmu.edu> "Harry M. Leitzell" writes:
: 	Ounce of prevention is worth a ... You get the point.  I agree
: that some sort of buffer overflow prevention in FreeBSD would be loved by
: all even if they do not choose to use it.  Anyhow, it would be nice to see
: a Stack + Heap Guard that does not break certain aspects of an OS that
: people use (gdb modified so that it correctly reads the format of an
: activation record on the stack that was changed would be nice).  I am
: trying to remember the reason that OpenBSD decided against such designs. 
: Anyone? 

Because the OpenBSD folk want to fix all bugs, and buffer overflows
are bugs.  There are several competing ways of fixing this, none of
which are entirely satisfactory.  Mostly people complain about the
overhead of these systems, but on a fast machine you'll likely not
notice.

They also generally only protect against smash the stack overflows,
although some do offer some limited protect against global variable or
heap overflows.

Warner


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message