Re: Non-executable stack
--lrZ03NoBR/3+SXJZ
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, Oct 27, 2005 at 03:11:35PM +0000, db wrote:
> On Thursday 27 October 2005 06:35, you wrote:
>=20
> > http://www.research.ibm.com/trl/projects/security/ssp/buildfreebsd.html
> >
> > The patch should be for 5.x in general, I don't use it anymore since so=
me
> > ports will break, if you play with it you can disable it by default and
> > enable it explicit when you are willing to compile a binary with it.
>=20
> Ok thanks, but I was looking for a kernel level patch. Btw which ports wi=
ll=20
> break?
>=20
I did not keep a list, but as far as I remember, the 'pure-pw' binary
from pure-ftpd was the last thing that failed. Because it was not
visible in first place (the port builded fine), I decided the risk of
breaking things without noticing it was not worth it.
I don't mean that it's a bad thing, but it will cost you some time to
find the bugs, report the bugs and get them fixed. And if you are
willing to use it in a production environment, you have to fully test
the software eacht time you are upgrading to be sure things will not
break. It's also not officially supported as far as I know.
Kind regards,
Jimmy Scott
--=20
People usually get what's coming to them ... unless it's been mailed.
--lrZ03NoBR/3+SXJZ
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (OpenBSD)
iD8DBQFDYTFygDLTDEgDPT0RAlh4AJ0ccvAUXpHciDwEM8UEe9fMq8CAPQCeK+lE
ExjtwwBMk2F/bkM0iD7HA3E=
=6oQq
-----END PGP SIGNATURE-----
--lrZ03NoBR/3+SXJZ--
討論串 (同標題文章)
完整討論串 (本文為第 4 之 18 篇):