prelink: is it worth it?
yersinia
yersinia.spiros at gmail.com
Thu Jul 9 16:11:59 UTC 2009
On Thu, Jul 9, 2009 at 5:59 PM, Till Maas <opensource at till.name> wrote:
> On Thu July 9 2009, yersinia wrote:
>>
>> > But something one have to pay a security prize on not disabling it : it
>> > render impossible to have a
>> > centralizzated security integrity management (e.g. rfc.sf.net for
>> example)
>> > or one have to skip from check the prelink binary. Very bad i think.
>>
>> You pay a security prize if you disable prelink, because it also performs
>> address space randomization:
>> http://lwn.net/Articles/190139/
>>
>
> Perhaps something have changed from 2006 - try yourself. on your
> RHEL/fedora if ASLR depends only on prelink.
> But the last word on this is on jackub/Ulrich/Molnar. If i was wrong it is
> nice to know.
>
> regards
>
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20090709/6f1dcb3b/attachment.htm>
More information about the fedora-devel-list
mailing list