Contributed by grey on from the for those who aren't jet setting around the globe dept.
Theo's slides of his presentation at Auug04 about Exploit Mitigation Techniques are online now.
The presentation is almost the same as the presentation at bsdcan2004, but at some points this presentation gives more details. Maybe this is interesting for some of you.
You can read the slides online.Update: an article titled De Raadt happy with AUUG conference audience
(Comments are closed)
By Gabriel (200.221.124.40) on
I think that 3 lines executed everytime there's memory manipulation are some damn important 3 lines to begin with and should never be reduced to "mere 3 lines"
after all, i could put some print hello word on the begining of the same function. It would be a ONE line change to the kernel. :)
Comments
By Anonymous Coward (69.197.92.181) on
By tedu (66.93.171.98) on
2. calling printf just for the hell of it adds no functionality.
3. calling printf in the kernel executes way more than 3 lines of code, regardless of the "diff" size.
Comments
By tedu (66.93.171.98) on
By Anonymous Coward (65.222.158.132) on
Comments
By djm@ (61.95.66.134) on
By tedu (66.93.171.98) on
By Anonymous Coward (130.233.220.23) on
Comments
By tedu (67.127.55.173) on
Comments
By Anonymous Coward (130.233.220.23) on
I was thinking more like that, mail server, httpd, etc. could be written in a safe language.
BSD licensed Java, anyone knows? ;)
Comments
By Anonymous Coward (195.217.242.33) on
By Anonymous Coward (68.165.27.173) on
Comments
By SH (82.182.103.172) on
By Anonymous Coward (207.46.238.133) on