===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/33.html,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- www/33.html 2003/03/25 21:50:10 1.1
+++ www/33.html 2003/03/25 21:54:34 1.2
@@ -78,6 +78,7 @@
ProPolice
stack protection technology into the system compiler. This protection is
enabled by default.
+
W^X (pronounced: "W or X") binaries on ELF architectures. This is
a fine-grained memory permissions layout, ensuring that memory which can be
@@ -85,7 +86,8 @@
This raises the bar on potential buffer overflows and other attacks.
-
Still more reduction in setuid binaries.
+Still more reduction in setuid and setgid binaries, and more chroot
+use throughout the system.
The X window system uses privilege separation, for better security.
@@ -359,7 +361,7 @@
alt="OpenBSD">
www@openbsd.org
-$OpenBSD: 33.html,v 1.1 2003/03/25 21:50:10 miod Exp $
+$OpenBSD: 33.html,v 1.2 2003/03/25 21:54:34 deraadt Exp $