Date: Mon, 1 Mar 2021 08:06:41 -0800 From: John Kennedy <warlock@phouka.net> To: Shawn Webb <shawn.webb@hardenedbsd.org> Cc: Warner Losh <imp@bsdimp.com>, FreeBSD Current <freebsd-current@freebsd.org>, Ed Maste <emaste@freebsd.org>, Gordon Bergling <gbe@freebsd.org> Subject: Re: HEADS-UP: PIE enabled by default on main Message-ID: <YD0REcdxXpFd7tKV@phouka1.phouka.net> In-Reply-To: <20210228144054.urbtqudxjyzdkm7h@mutt-hbsd> References: <CAPyFy2CyxG=Bj8T22ixW3=E3dv6mPoZRwJ_VSN%2BTwky95rUYYw@mail.gmail.com> <YDk/G50NWjeoia33@lion.0xfce3.net> <YDlEs6tA9e9VJJ0C@kib.kiev.ua> <YDlMykRXkT03y6Kt@lion.0xfce3.net> <YDroC3avOcPeQh0W@kib.kiev.ua> <20210228043411.mj7l5wkwj46neurv@localhost> <CANCZdfoub0mpJti6bkKsTRS2gTi_fjjVc2QniWVMkSWwSnMxNg@mail.gmail.com> <20210228144054.urbtqudxjyzdkm7h@mutt-hbsd>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Feb 28, 2021 at 09:40:54AM -0500, Shawn Webb wrote: > ... The point of ASLR is to combine it with W^X. Without W^X, ASLR makes > no sense. FreeBSD recently gained a W^X implementation that requires > opt-in. ... I'm not plugged into the right places to catch some of these things up front. Like PIE, I trip across how to enable them after the fact by finding people talking about it here. My google-fu is getting a lot of bad hits, but I assume this is referring to making writable memory non-executable (above and beyond malloc()'s M_EXEC flag with it's disclaimers). What are the keyword/feature/knobs to get better informed and opt-in?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?YD0REcdxXpFd7tKV>