Expanding the list of "Hardened Packages"
Miloslav Trmač
mitr at volny.cz
Wed Apr 3 11:46:28 UTC 2013
On Wed, Apr 3, 2013 at 12:18 AM, Adam Williamson <awilliam at redhat.com>wrote:
> On 31/03/13 08:11 AM, Richard W.M. Jones wrote:
>
> However prelink does reduce the effectiveness of ASLR (a bit). See
>> http://lwn.net/Articles/**341440/ <http://lwn.net/Articles/341440/> and
>> follow-up conversation.
>>
>
> Ignoring the silly stuff, it does seem that this is Yet Another Reason
> Prelink Is Bad
>
Is it? The linked comment says the opposite: prelink might interfere with
ASLR, but for most programs it doesn't make a difference. Even the latter
discussion about local attackers doesn't really apply when any PIE
executable automatically means prelink is ignored both for the executable
and for any used shared libraries, as Jakub said.
Mirek
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20130403/d9baf1d9/attachment.html>
More information about the devel
mailing list