Re: prelink: is it worth it?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Fri, Jul 10, 2009 at 11:29:43PM +0200, yersinia wrote:
> Ok. But prelink it or not a requisite for ASLR or not ? In other word,
> besides performance
> is disabling prelink a security matter or not ? It is not bad to have some
> answer on this.

ASLR happens with prelink or without.  Particularly, PIEs (should be used
for most of suid/network facing or otherwise security exposed programs) are
always randomized, both the binary itself and all shared libraries it uses.

Other than that, on prelinked system libraries are assigned random addresses
whenever reprelinked, while when not prelinked, libraries are given random
addresses on every exec.  Non-PIE binaries have always fixed address.

	Jakub

-- 
fedora-devel-list mailing list
fedora-devel-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-devel-list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux