Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 4 Feb 2003 22:49:25 -0500
From:      Garance A Drosihn <drosih@rpi.edu>
To:        "Brandon D. Valentine" <brandon@dvalentine.com>, Justin Lundy <jbl@cvs.tegatai.com>
Cc:        FreeBSD-Hackers <FreeBSD-Hackers@FreeBSD.ORG>
Subject:   Re: [eugene@securityarchitects.com: Re: Preventing exploitation with rebasing]
Message-ID:  <p05200f62ba6637bbfd04@[128.113.24.47]>
In-Reply-To: <20030204201043.GR16038@geekpunk.net>
References:  <20030204195114.GA92636@cvs.tegatai.com> <20030204201043.GR16038@geekpunk.net>

next in thread | previous in thread | raw e-mail | index | archive | help
At 2:10 PM -0600 2/4/03, Brandon D. Valentine wrote:
>On Tue, Feb 04, 2003 at 11:51:14AM -0800, Justin Lundy wrote:
>  > Has similar work been done in FreeBSD been done? This would be
>  > a nice feature in 5.0-CURRENT. We had SecureBSD, and the IBM
>  > port of propolice, but both projects appear to be defunct at
>  > present.

It would be much smarter to follow what OpenBSD is doing with
propolice, and revive a freebsd project of *that*.

>  > ----- Forwarded message from Eugene Tsyrklevich 
><eugene@securityarchitects.com> -----
>  > "Add a possibility to add a random offset to the stack on exec.
>  > This makes it slightly harder to write generic buffer overflows.
>  > This doesn't really give any real security, but it raises the
>  > bar for script-kiddies and it's really cheap.
>
>AFAIK, no.  No similiar work has been done in FreeBSD.
>
>Personally I think if one is going to expend effort in making the
>stack more secure the proper way to do this is to follow NetBSD's
>example and switch to a signal trampoline provided by libc so that
>stack pages can be marked non-executable in the first place.
>Adding random offsets to the stack is never going to be more than
>a hack.

I agree that random offsets will not buy much in the way of
security, but it might make some kinds of initialization errors
more obvious.  I'm thinking of the kind of errors where a routine
forgets to initialize a key variable, but everything "seems to
work" because the routine happens to always pick up the same
value off the stack.  By adding random offsets, the routine
*might* at least behave differently each time it's run.

Okay, I'll admit that even that is a bit of a long-shot...

-- 
Garance Alistair Drosehn            =   gad@gilead.netel.rpi.edu
Senior Systems Programmer           or  gad@freebsd.org
Rensselaer Polytechnic Institute    or  drosih@rpi.edu

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?p05200f62ba6637bbfd04>