LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page [SOLVED] pax aslr problem
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-06-2010, 02:47 PM   #1
vikramadb
LQ Newbie
 
Registered: Nov 2009
Location: Albuquerque, New Mexico
Distribution: Fedora, little of centos, opensuse,ubuntu
Posts: 2

Rep: Reputation: 0
pax aslr problem

Hi,
Is it that pax aslr is disabled in kernel 2.6.31 or gcc 4.4.2? I have tried on both Fedora 12 and Ubuntu 9.10. I wrote a small C program and used gdb to see the addresses on the registers esp ebp etc.. and they seem to be the same every time I recompile and rerun the program using gdb. I had tried this long ago on Fedora 10 and it work correctly at that time and the addresses in those were getting randomized. I made sure that kernel.randomize_va_space is set to 2 instead of to 0 . I am not very knowledgeable on this, so I might also be doing a silly mistake. If anyone has an idea why this is happening it would be great to let me know
Thanks,
Vikram Gade
 
Old 01-07-2010, 08:07 AM   #2
slimm609
Member
 
Registered: May 2007
Location: Chas, SC
Distribution: slackware, gentoo, fedora, LFS, sidewinder G2, solaris, FreeBSD, RHEL, SUSE, Backtrack
Posts: 430

Rep: Reputation: 67
The kernel does not include pax aslr by default. The kernel does use some alsr but it is not as extensive as pax aslr and it is not the same thing.
 
Old 05-05-2010, 02:55 AM   #3
PlatinumX
Member
 
Registered: May 2008
Location: France
Distribution: Debian / Fedora / Gentoo
Posts: 178

Rep: Reputation: 15
Hey all,

I heard that Ubuntu made some improvements in security has they now use as default the "hardening option" during the compilation:
- stack protector
- ASLR

What do you think of it ?

I also heard some criticize saying that they do it, to tell it to the world, but the implementation is poor.
Any opinions ?

Thanks
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
No pax in Slackware? lupinix Slackware 9 04-17-2013 12:49 PM
pax with -x xtar option dmac05 Linux - Software 2 01-09-2009 01:01 AM
PAX protection deadlinx Linux - Security 4 06-08-2007 03:51 AM
Linux 2.4.31 with kdb and aslr iw05t Linux - Software 1 01-24-2006 04:27 PM
Excluding a file when using pax tobycatlin Linux - General 9 04-28-2005 11:13 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:59 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration