[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: prelink: is it worth it?

From: Steve Grubb <sgrubb redhat com>
To: fedora-devel-list redhat com
Cc:
Subject: Re: prelink: is it worth it?
Date: Thu, 9 Jul 2009 14:19:25 -0400

On Thursday 09 July 2009 10:45:55 am devzero2000 wrote:
> There are also other two big problem, imho, now, with prelink support:
>
> 1 - it render impossibile to do a centralizzated integrity checker (with as
> example rfc.sf.net ): very very bad

The aide program in rawhide is prelink friendly. So there are integrity 
checkers that can be used.

As for security, prelink stirring around address space randomization is good  
for security. For example, this hack needed prelink not to have run to get the 
exploit reliable:

http://invisiblethingslab.com/pub/xenfb-adventures-10.pdf

There are more examples like this.

-Steve

Follow-Ups:
- Re: prelink: is it worth it?
  - From: yersinia

References:
- prelink: is it worth it?
  - From: Matthew Miller
- Re: prelink: is it worth it?
  - From: Adam Miller
- Re: prelink: is it worth it?
  - From: devzero2000

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]