| version 1.9, 2003/03/25 23:48:46 |
version 1.10, 2003/03/25 23:49:38 |
|
|
| enabled by default. |
enabled by default. |
| <p> |
<p> |
| |
|
| <li>W^X (pronounced: "W xor X") binaries on ELF architectures. This is |
<li>W^X (pronounced: "W xor X") binaries on architectures capable of |
| a fine-grained memory permissions layout, ensuring that memory which can be |
pure execute-bit support in the MMU (sparc, sparc64, alpha, |
| written to by application programs can not be executable at the same time |
hppa). This is a fine-grained memory permissions layout, ensuring that |
| and vice versa. This raises the bar on potential buffer overflows and other |
memory which can be written to by application programs can not be |
| attacks. |
executable at the same time and vice versa. This raises the bar on |
| |
potential buffer overflows and other attacks. |
| <p> |
<p> |
| |
|
| <li>Still more reduction in setuid and setgid binaries, and more chroot |
<li>Still more reduction in setuid and setgid binaries, and more chroot |
![[BACK]](/icons/back.gif){kind=icon}
Return to 33.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www