search for: stackguard

Hi all, perhaps this is something of interest to all of us RedHat users ? Later Crispin added: | In response to many comments pointing out a glaring omission (grovel | grovel) the SOURCE CODE for StackGuard is now on line, both as a complete | tar ball and as a source patch to gcc 2.7.2.3, available here: | | http://www.cse.ogi.edu/DISC/projects/immunix/StackGuard/compiler.html Greetings, Jan-Philip Velders <jpv@jvelders.tn.tudelft.nl> _---------- Forwarded message ---------- _Date: Thu, 2...

I would be surprised if someone hasn''t encountered this already, but I haven''t found any discussion of the nature of this problem. I run RehHat 5.0. If a user makes a mistake in the login process such as the following: login: mistake password: xxx Login incorrect! login: username password xxxx bash$ a ps will show, among other things, 2333 /bin/login --mistake. Since

Hi all, I am master student in Edinburgh, UK. I am doing my MSc project with LLVM compiler and I have to modify LLVM to implement the StackGuard with a XOR random Canary. However, I am not familiar with LLVM. My problem is that I want to XOR the random canary word with the return address which are both 32 bits. I found a method called SimplifyXorInst(Value *, Value *, const TargetData *,const DominatorTree *, unsigned) but I do not...

Someone I was speaking with this evening claimed they have installed the latest named rpms yet they are still getting exploited daily and being hacked. Do the latest rpm''s for the named 4.9.x stuff fix all the root exploits or is this person just an idiot who probably has holes elsewhere in the system?

We just had a security application vendor come in. We asked about Linux support and he said that putting a security application on top of an insecure OS was useless. When I asked what he meant by insecure he replied that Linux does not have a true Auditing capability - as opposed to HP-UX & Solaris which they do support. Can anyone explain to me what he was talking about? Thanks, Marty

Just compiled the SRPM for 3.3p1 on my Immunix 6.2 box (Redhat 6.2 + Stackguard compiler), fired up the server, and tried to connect to it. No joy. In the spec file I changed the following options: # Is this build for RHL 6.x? %define build6x 1 # Disable IPv6 (avoids DNS hangs on some glibc versions) %define noip6 1 This appears in the system log: Jun 24 16:11:51 johnh ss...

Hi all, I am master student in Edinburgh, UK. I am doing my MSc project with LLVM compiler and I have to modify LLVM to implement the StackGuard with a XOR random Canary. However, I am not familiar with LLVM. My problem is that I want to XOR the random canary word with the return address which are both 32 bits. I found a method called SimplifyXorInst(Value *, Value *, const TargetData *,const DominatorTree *, unsigned) but I do not k...

Hi, I'm looking for a solution to access pop mails (sendmail in linux) securely. Most of the access would be from window clients (outlook express etc). Is there a way to encrypt the password (like ssh2) when authenticating with sendmail? Any info is greatly appereceiated. Thx. Regards, Wong.

Hi, first sorry for cross-posting but I thought this patch might interest -CURRENT users as well as people concerned by security. I wrote a patch that integrates ProPolice/SSP into FreeBSD, one step further than it has been realized so far. It is available here : http://tataz.chchile.org/~tataz/FreeBSD/SSP/ Everything is explained on the web page, but I will repeat some informations here.

Hello guys. Following Dug's withdrawal of the SSH1 AFS patches, I'm trying to give OpenSSH installation another shot. It fails. The setting: * Platforms: Linux (Immunix 6.2), Solaris 7, IRIX 6.5, OSF1 4.0F, HP-UX 10.20. * Compilers: StackGuard egcs on Linux, vendor-supplied native on others (Workshop 5.0 Sun; MIPSpro 7.3 SGI; OSFCMPLRS440 package; HP ANSI C compiler B3899BA B.10.20.07) * Kerberos: KTH krb4 1.0.8 on all platforms, installed on AFS, /usr/athena linked to /afs/biocenter.helsinki.fi/v/@sys/libraries/kth-krb4/latest...

I was wondering if there's any non-executable stack patch for FreeBSD's kernel. I searched in google but all I got was some questions in freebsd-security back from 2001 and an answer saying someone heard about a project like this, but no information at all. Is there any patch like PaX or Openwall available for FreeBSD? I dont want to discuss if its useless or not since there're a

...512-9 [2001/08/20 09:00:38, 0] smbd/nttrans.c:call_nt_transact_ioctl(1798) call_nt_transact_ioctl: Currently not implemented. I gather the SAMLOGON messages are apparently harmless, but the others might indicate some problems? Things seem to work fine though. Samba is compiled with gcc 2.7.2.3 Stackguard 1.21, which might cause the string overflow messages. I'm not subscribed to this list, so please cc: any replies. -- Samuli Kdrkkdinen |\ _,,,---,,_ skarkkai@woods.iki.fi----------ZZZzz /,`.-'`' -. ;-;;,_------ http://www.woods.iki.fi |,4-...