prelink: is it worth it?
devzero2000
pinto.elia at gmail.com
Thu Jul 9 18:12:59 UTC 2009
On Thu, Jul 9, 2009 at 5:59 PM, Till Maas <opensource at till.name> wrote:
> On Thu July 9 2009, yersinia wrote:
>
> > But something one have to pay a security prize on not disabling it : it
> > render impossible to have a
> > centralizzated security integrity management (e.g. rfc.sf.net for
> example)
> > or one have to skip from check the prelink binary. Very bad i think.
>
> You pay a security prize if you disable prelink, because it also performs
> address space randomization:
> http://lwn.net/Articles/190139/
>
Strange enough this authorative refs, imho, not cited prelink as a security
feature
for aslr :=)
http://www.awe.com/mark/blog/200801070918.html
Btw, the reality is more complex this days
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20090709/0df956ad/attachment.htm>
More information about the fedora-devel-list
mailing list