Announcement

Collapse
No announcement yet.

Linux Security Feature Revised For Randomizing The Kernel Stack Offset At Each System Call

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    Linux Security Feature Revised For Randomizing The Kernel Stack Offset At Each System Call

    Phoronix: Linux Security Feature Revised For Randomizing The Kernel Stack Offset At Each System Call

    Patches have been revised for allowing Linux to support kernel stack base address offset randomization for each system call...

    Linux Security Feature Revised For Randomizing The Kernel Stack Offset At Each System Call - Phoronix
    http://www.phoronix.com/scan.php?page=news_item&px=Linux-Random-Stack-Offset-Per
    Phoronix, Linux Hardware Reviews, Linux hardware benchmarks, Linux server benchmarks, Linux benchmarking, Desktop Linux, Linux performance, Open Source graphics, Linux How To, Ubuntu benchmarks, Ubuntu hardware, Phoronix Test Suite
    Tags: None
  • #2
    Doesn't Windows have this since XP?

    Comment

    • #3
      DEP is something different

      Comment

      • #4
        Okay, i fact checked.. it's since Windows Vista. I know Linux as a paradigm is "Hey there virus, even if you exploit the program you won't be able to do anything", and "you dumb, where did you encounter a Linux virus", but as far as i know DEP and ASLR were the mainstay of memory protection. Isn't Linux too late to the party? Multi-layered security?
        • Likes 1

        Comment

        • #5
          Originally posted by mystiquewolf View Post
          Okay, i fact checked.. it's since Windows Vista. I know Linux as a paradigm is "Hey there virus, even if you exploit the program you won't be able to do anything", and "you dumb, where did you encounter a Linux virus", but as far as i know DEP and ASLR were the mainstay of memory protection. Isn't Linux too late to the party? Multi-layered security?
          Address space layout randomization - Wikipedia
          https://en.wikipedia.org/wiki/Address_space_layout_randomization#Linux


          You are thinking address randomisation that was added in Vista. This did not add stack randomisation of the stack offset that this is doing. ASLR and DEP really comes into the LInux kernel sooner than Windows. Linux basic DEP is called NX that even old added to Linux.

          Grsecurity patchset provided some more advanced stuff than Microsoft Windows offered now those features are turning up as mainline features. This is a feature that just been adding to the LInux kernel that OS X and Windows don't have if you are lucky they will get it in another 2 to 3 years..
          • Likes 5

          Comment

          • #6
            Linux Security: Chinese State Hackers May Have Compromised ‘Holy Grail’ Targets Since 2012
            https://www.forbes.com/sites/daveywinder/2020/04/07/linux-security-chinese-state-hackers-have-compromised-holy-grail-targets-since-2012/
            State-sponsored hackers have been compromising Linux servers since 2012, according to a new threat intelligence analysis report


            i think this news has something to do with this link. i was hacked to by chinese communist hackers.
            Phantom circuit Sequence Reducer Dyslexia

            Comment

            • #7
              If you have to worry about things like APT... you've got quite a problem and no any widespread OS would save you easily on its own. And even exotic OS could be investigated by such a powerful adversary. Security is funny thing. Most dangerous time is when you feel yourself safe.

              Comment

              Previous template Next
              Working...
              X