Date: Wed, 3 Nov 1999 06:58:09 -0700 (MST) From: David G Andersen <danderse@cs.utah.edu> To: andre@sun4c.net (Andre Gironda) Cc: frank@hellbell.agava.ru, freebsd-security@FreeBSD.ORG Subject: Re: stack protecting Message-ID: <199911031358.GAA22340@faith.cs.utah.edu> In-Reply-To: <19991103012048.A18803@toaster.sun4c.net> from "Andre Gironda" at Nov 3, 99 01:20:48 am
index | next in thread | previous in thread | raw e-mail
Lo and behold, Andre Gironda once said:
>
>
> Stack protection doesn't work as there are still heap overflows and
> race conditions. it's best to apply TPE patches (Phrack, Issue 52/54),
> like originally implemented on upt.org. Or write perfect code ;>
While I agree with you that it's not a perfect solution, isn't that
like saying that using a car alarm isn't a good idea, even though it will
prevent 50% of the breakins to your car?
Defense in depth *is* a good idea. Stackguard and like products can
help quite a bit with this.
Now, given that, Stackguard doesn't support FreeBSD. :)
-Dave
--
work: dga@lcs.mit.edu me: dga@pobox.com
MIT Laboratory for Computer Science http://www.angio.net/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199911031358.GAA22340>