Re: Non-executable stack
Quoting db <db@traceroute.dk>:
> Hi all
>
> Does FreeBSD support a non-executable stack on any of the tier 1 and 2
> platforms that has this feature?
> If not, are there any plans of implementing this and is there a patch I can
> use for 6.0 (when it is released)?
>
> Best regards
> db
Hi,
I don't think it will ever be in FreeBSD, but I used ProPolice in the past:
http://www.research.ibm.com/trl/projects/security/ssp/buildfreebsd.html
The patch should be for 5.x in general, I don't use it anymore since some
ports will break, if you play with it you can disable it by default and
enable it explicit when you are willing to compile a binary with it.
Once applied and compiled the whole base with it enabled, you cannot just
turn back!
Kind regards,
Jimmy Scott
----------------------------------------------------------------
This message has been sent through ihosting.be
To report spamming or other unaccepted behavior
by a iHosting customer, please send a message
to abuse@ihosting.be
----------------------------------------------------------------
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)
完整討論串 (本文為第 2 之 18 篇):