| 1 |
On 7 Sep 2015 at 11:06, René Rhéaume wrote: |
| 2 |
|
| 3 |
> 2015-09-07 10:41 GMT-04:00 PaX Team <pageexec@××××××××.hu>: |
| 4 |
> > i wouldn't call it magic but PaX used to provide RANDEXEC: |
| 5 |
> > |
| 6 |
> > https://pax.grsecurity.net/docs/randexec.txt |
| 7 |
> |
| 8 |
> Is RANDEXEC abandoned because it could not be ported to other architectures? |
| 9 |
|
| 10 |
no, portability isn't a concern in general (if it were, we'd have removed |
| 11 |
half the features already ;). rather, the underlying code was too complex |
| 12 |
to maintain after a while (IIRC, it's become much harder with the 2.6 kernel |
| 13 |
series) and the benefits weren't enough to justify the costs (e.g., false |
| 14 |
positives, performance impact). |
Archives