Date: Tue, 23 Apr 2019 15:12:42 +0200 From: bryn1u85 <m.bryn1u@gmail.com> To: =?UTF-8?Q?Kornel_Dul=C4=99ba?= <mindal@semihalf.com> Cc: FreeBSD Hackers <freebsd-hackers@freebsd.org> Subject: Re: W^X support in FreeBSD Message-ID: <CAHsHv-ZLQmEPmqMRd4sSy1kU2_PHm7BDtUBd3bfpdWgZOnim6w@mail.gmail.com> In-Reply-To: <CAKpxNiwBuLRO6_W3oM5PS5G4QALz3CzKtyoQSJcYaQ6gyB8FSQ@mail.gmail.com> References: <CAKpxNiwBuLRO6_W3oM5PS5G4QALz3CzKtyoQSJcYaQ6gyB8FSQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hey Kornel, Im just curious why just don't u use HardenedBSD instead FreeBSD ? Either HardenedBSD has ports hardened including fstack-protector-all, SafeStack and Control Flow Integrity wt., 23 kwi 2019 o 13:18 Kornel Dul=C4=99ba <mindal@semihalf.com> napisa=C5= =82(a): > Hello, > > After doing some research I've noticed that FBSD is pretty much the only > *BSD system without support for some sort of W^X policy. > Also said policy is implemented in HardenedBSD which looks pretty much > similar to FBSD. > Would there be interest in reviewing/merging a patch that imports W^X > (PAGEEXEC and MPROTECT) from HardenedBSD? > I suppose that it would have to be disabled by default, as it breaks some > things such as JIT. > > Regards > Kornel Dul=C4=99ba > _______________________________________________ > freebsd-hackers@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-hackers > To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org= " >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAHsHv-ZLQmEPmqMRd4sSy1kU2_PHm7BDtUBd3bfpdWgZOnim6w>