Slashdot Mirror

← Back to Stories (view on slashdot.org)

Exec Shield for the Linux Kernel

Posted by michael on from the planning-for-failure dept.

DarkOx writes "There is a new patch from Ingo Molnar which can prevent overflow attacks. The scoop from KernelTrap is as follows: Ingo Molnar has announced a new kernel-based security feature for Linux/x86 called 'Exec Shield'. He describes the patch, which is against the 2.4.20-rc1 kernel, as: 'The exec-shield feature provides protection against stack, buffer or function pointer overflows, and against other types of exploits that rely on overwriting data structures and/or putting code into those structures. The patch also makes it harder to pass in and execute the so-called 'shell-code' of exploits. The patch works transparently, ie. no application recompilation is necessary.'"

1 of 264 comments (clear)

  1. Now that is funny... by daemonc · · Score: 0, Redundant

    n/t

    --
    All that we see or seem is but a dream within a dream.