[grsec] Theo de Raadt's rant on Linux security
Pavel Labushev
p.labushev at gmail.com
Thu Nov 5 02:36:42 EST 2009
Hello, list.
I'm sorry if this is too much offtopic, but I would like to hear Brad's
and PaX Team's comments on this:
http://www.pubbs.net/openbsd/200911/4582/
What I would like to know:
When (how much years ago) PaX introduced the protection against
exploitation of in-kernel NULL ptr dereference bugs?
Was/is Linux 2.4/x86 vulnerable to exploitation of this kind of bugs?
And last but not least. Since there's no documentation available about
kernel exploit mitigation in OpenBSD, could you, please, shed some light
on what's done in OpenBSD, what's missing, and what is done wrong (?) in
OpenBSD to protect against exploitation of kernel bugs?
More information about the grsecurity
mailing list