Hi,
I am doing my thesis on secure patches to linux kernel.
in linux(on i386) data segment and code segment overlap. this is evident from the entries of GDT in head.s file.
Since data segment and code segment overlap, attackers can over flow a buffer and run malicious code. Thus buffer over flow attacks are successful.
i wonder why did they(kernel authors) make segments to overlap in linux on i386. but in case of other architectures they donot over lap. iam trying to put non over lapping data and code segments. i also looked into Open wall linux patch. even this patch could not avoid overlapping segments.
so let me know the reason for this fully overlapping segments in linux on i386.
thank you,
"Conquering Myselves to Conquer The World"
"Securing Kernel to Secure Whole System"
Do You Yahoo!?
Sign-up for Video Highlights of 2002 FIFA World Cup