1 |
On 7 Sep 2015 at 11:06, René Rhéaume wrote: |
2 |
|
3 |
> 2015-09-07 10:41 GMT-04:00 PaX Team <pageexec@××××××××.hu>: |
4 |
> > i wouldn't call it magic but PaX used to provide RANDEXEC: |
5 |
> > |
6 |
> > https://pax.grsecurity.net/docs/randexec.txt |
7 |
> |
8 |
> Is RANDEXEC abandoned because it could not be ported to other architectures? |
9 |
|
10 |
no, portability isn't a concern in general (if it were, we'd have removed |
11 |
half the features already ;). rather, the underlying code was too complex |
12 |
to maintain after a while (IIRC, it's become much harder with the 2.6 kernel |
13 |
series) and the benefits weren't enough to justify the costs (e.g., false |
14 |
positives, performance impact). |