From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: jhd Newsgroups: gmane.emacs.devel Subject: Re: Needed for the release Date: Sat, 11 Jun 2005 07:50:05 +0200 Message-ID: References: <20050610.194059.156818634.jet@gyve.org> <85is0lokfm.fsf@lola.goethe.zz> NNTP-Posting-Host: main.gmane.org Mime-Version: 1.0 (Apple Message framework v730) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Content-Transfer-Encoding: 7bit X-Trace: sea.gmane.org 1118471977 977 80.91.229.2 (11 Jun 2005 06:39:37 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Sat, 11 Jun 2005 06:39:37 +0000 (UTC) Cc: Masatake YAMATO , rms@gnu.org, emacs-devel@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Sat Jun 11 08:39:35 2005 Return-path: Original-Received: from lists.gnu.org ([199.232.76.165]) by ciao.gmane.org with esmtp (Exim 4.43) id 1DgzeY-00059Q-0k for ged-emacs-devel@m.gmane.org; Sat, 11 Jun 2005 08:39:34 +0200 Original-Received: from localhost ([127.0.0.1] helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1Dgzic-0003TE-6K for ged-emacs-devel@m.gmane.org; Sat, 11 Jun 2005 02:43:46 -0400 Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1Dgzf7-0003Rx-Vy for emacs-devel@gnu.org; Sat, 11 Jun 2005 02:40:10 -0400 Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1Dgzf3-0003QV-H4 for emacs-devel@gnu.org; Sat, 11 Jun 2005 02:40:06 -0400 Original-Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1Dgzf2-0003QI-7l for emacs-devel@gnu.org; Sat, 11 Jun 2005 02:40:04 -0400 Original-Received: from [195.54.107.70] (helo=mxfep01.bredband.com) by monty-python.gnu.org with esmtp (Exim 4.34) id 1Dgyu4-0004zP-C8; Sat, 11 Jun 2005 01:51:32 -0400 Original-Received: from coolsville.localdomain ([83.226.180.210] [83.226.180.210]) by mxfep01.bredband.com with ESMTP id <20050611055055.LKIN19329.mxfep01.bredband.com@coolsville.localdomain>; Sat, 11 Jun 2005 07:50:55 +0200 In-Reply-To: <85is0lokfm.fsf@lola.goethe.zz> Original-To: David Kastrup X-Mailer: Apple Mail (2.730) X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:38559 X-Report-Spam: http://spam.gmane.org/gmane.emacs.devel:38559 11 jun 2005 kl. 01.34 skrev David Kastrup: > Richard Stallman writes: > > >> What I remember is that Red Hat enables a feature in Linux that (I >> believe) uses the address space differently. unexelf.c doesn't >> handle >> it right. >> >> I don't remember the name of the feature, but I'm sure other people >> on this list remember the name. >> > > exec_shield is one such feature, and newer kernels use something like, > uh, /proc/sys/vm/randomize_... (I don't remember the particular name > right now and don't have a Fedora active). The latter loaded > executables' memory segments into randomized locations to make buffer > overflow attacks less predictable. > > exec_shield could be gotten around with using > setarch i386 make > and configure does that already IIRC. But the address space > randomization was prohibiting the dumping even with the setarch > command. There is some info in etc/PROBLEMS, and some information here: http://www.redhat.com/f/pdf/rhel/WHP0006US_Execshield.pdf http://people.redhat.com/drepper/nonselsec.pdf And if you search for Exec-shield here: http://www.redhat.com/docs/manuals/enterprise/RHEL-3-Manual/release- notes/as-x86/RELEASE-NOTES-U3-x86-en.html They don't describe the new randomizing features though. Jan D.