From owner-freebsd-security@freebsd.org Wed Mar 9 14:05:28 2016 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 2386DAC9C29 for ; Wed, 9 Mar 2016 14:05:28 +0000 (UTC) (envelope-from pkubaj@anongoth.pl) Received: from anongoth.pl (anongoth.pl [88.156.79.165]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "anongoth.pl", Issuer "Let's Encrypt Authority X1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id D1611CA6 for ; Wed, 9 Mar 2016 14:05:27 +0000 (UTC) (envelope-from pkubaj@anongoth.pl) Received: from mail (unknown [127.0.1.10]) by anongoth.pl (Postfix) with ESMTP id 9156654F8 for ; Wed, 9 Mar 2016 15:05:24 +0100 (CET) X-Virus-Scanned: amavisd-new at anongoth.pl Received: from anongoth.pl ([127.0.1.10]) by mail (anongoth.pl [127.0.1.10]) (amavisd-new, port 10024) with LMTP id iaZWYdbTt-tN for ; Wed, 9 Mar 2016 15:05:11 +0100 (CET) Received: from [10.10.0.70] (unknown [46.248.161.165]) (using TLSv1.2 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: pkubaj) by anongoth.pl (Postfix) with ESMTPSA id 8A87F54E6 for ; Wed, 9 Mar 2016 15:05:10 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=anongoth.pl; s=ANONGOTH; t=1457532310; bh=tKrw0MpN6xbELnk8+cS+kbnbxDmgqtRS0Us/PGyhX34=; h=To:From:Subject:Date; b=a+AYkYwNkQRqB88RYW9fGfj8yJK0U6xcd634HMUlBFwatP5b2TBhlPokWQaqR4Wls PbJcMEcX2ls0jO7aqgEAEQxWN6RGu6BcPNsnVBKlVjNuEon6oDtL475qFj6JLPJsnq TZ9fnBXF5JQO11nw8K/UjX50/YK6xbammc5MCb2J6fzHCtlk/l9gxT3LhE8H4Q4D6t gwY27lGcuyqd6BYRGW2bHg1pdmwamFVvoumj6xwy4s/foivjHGKJVdBqpPLW7madQU i9Oub2DMhLpy3nOu3w1ncLGo0bJ4KqBuftguiCcc8OVNM/5LwV3mtpgFhYu8J5PlAI r/f6I4IBEmz+g== To: freebsd-security@freebsd.org From: Piotr Kubaj Subject: Will 11.0-RELEASE include ASLR? X-Enigmail-Draft-Status: N1110 Message-ID: <56E02D95.9020303@anongoth.pl> Date: Wed, 9 Mar 2016 15:05:09 +0100 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:38.0) Gecko/20100101 Thunderbird/38.6.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Mailman-Approved-At: Wed, 09 Mar 2016 14:18:18 +0000 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Mar 2016 14:05:28 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Shawn Webb has recently announced that ASLR is complete on HardenedBSD. There are patches ready for FreeBSD to use and it's ready to be shipped in FreeBSD. However, for some reason FreeBSD developers do not want to ship ASLR in FreeBSD. Why can't it be included at least as non-default src.conf option and marked as experimental? FreeBSD is the only OS that matters that doesn't have ASLR. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJW4C2QAAoJEHpZm4Ugg5yd2MoQAMPZ+UxbpTo9YvJz6YYB8wtH tRw3jQMUb4K6s26IO1mp/K6p+DM+HXcVvamO2cxjRKseQy/oLBGizgfR1ktBqdXQ xuqQJc5BCSdKgTsBs0IvNQghvUQkEyvYi+wn9EY9qJh6oEguAkcAWUhl5rGN2FhM Gwf9VDoPAR+n9Pjl6brcqyQvWczfDx9+VFpF0joeiI5PRRMF1UUsTYM/OHvtVoQA n1f8qNppIdprjwUjWE/BX6POaDhs4ZZKJRaFmbCuYudDPpX7P1yj7CHz/xthjMYG 325NnCJpN81fwCmcgvDFU3BYkEC9JSkBoA+5oDdRU3MALsJNQ10rz+IhAaeAsCMb oz7Oy0Gykeic60NLuMZlhOfl79XW666T1B9wOWlkrAlBPCY6v2kz6t/oJbHHGQOf CCBuhQJCdzdqyTnv0Bx4ZXiiecwhjvxaAPCwgppnxf2qLuBgxr9BsswMVp7wgYfM 2sfxk0pS0RuV5M2qWN9UATOyOiO5aPsC4f+WUzUM0LC6MbuHVDJu3QaUo7F3b3Ic KX150B3gWtsGlZZs8N9mIM3Aj/O5E496JHEf6zmlz6ssLuE6gIO8ICqpFSaXzkJC IWzgIVdL88gK6niVg7KCOAuzVZ1sxcx7cBCtGzAhVy9RhYKqwAtN9T2YOBC75cQW OdRGf2V3trcK664nKgEA =lM/6 -----END PGP SIGNATURE-----