Re: Patch to remove stack exec

Andi Gutmans (andi@vipe.technion.ac.il)
Wed, 30 Apr 1997 00:31:32 +0300

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: H. Peter Anvin: "Re: binfmt_misc - a generic 'wrapper'-binary format [PATCH on WWW]"
Previous message: David S. Miller: "Re: Signal 7 and "Couldn't get a free page...""

Hi,

I installed your patch on my system. A pretty busy 150 user system and
everything seems to work great. It's an httpd, ftp, qmail, shell account,
firewall machine :)

Would be nice to see this as an option in the Linux kernel. Maybe in the
"development" area. I personally think having this will be a plus for Linux
because as far as I know such a patch exists for Solaris (I don't think
it's by SunSoft though, not sure). And this really should get rid of most
buffer overflow vulnerabilities. I tested the crontab bug and SIGSEGV'd
very nicely :)

Thanks for the great patch, I'll mail again if it breaks...
Andi
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Andi Gutmans - Computer Science, Technion

PGP public key: finger andi@vipe.technion.ac.il

Next message: H. Peter Anvin: "Re: binfmt_misc - a generic 'wrapper'-binary format [PATCH on WWW]"
Previous message: David S. Miller: "Re: Signal 7 and "Couldn't get a free page...""