From: Daniel Kuehn <enhaisa@gmail.com>
To: gentoo-hardened@lists.gentoo.org
Subject: Re: [gentoo-hardened] binary protection mechanisms in different Linux distros
Date: Thu, 1 Jul 2010 10:10:44 +0200 [thread overview]
Message-ID: <20100701101044.0773a30b@Mobile-Workstation.localdomain> (raw)
In-Reply-To: <201007010846.11482.radegand@o2.pl>
On Thu, 1 Jul 2010 08:46:11 +0100
Radoslaw Madej <radegand@o2.pl> wrote:
> Hi guys,
>
> I convinced the company I work for to allow me to spend some time on
> reviewing different security aspects of Linux OS and different distros. As it
> also involves Gentoo Hardened (which I also happily use on a daily basis), I
> thought I'd share. :)
>
> http://labs.mwrinfosecurity.com/projectdetail.php?project=13&view=news
>
> There should be more to come in a near future. Any feedback appreciated :)
>
> Thanks to all hardened-dev for making the Hardened Gentoo happen! :)
> Regards,
> Radek Madej
>
A very good paper my friend, I enjoyed reading it :)
I think you go into enough detail to keep even the less interested people
reading and I hope that you manage to propagate this article (Maybe we could
put a reference to it in the hardened docs?) so that more people become aware.
Sure, some people are probably going to start question your testing methods and
such because, like you mention in the paper, assessing security enabled on
binaries can give false positives and negatives depending on how the code looks
like.
--
Mvh
Daniel Kuehn
next prev parent reply other threads:[~2010-07-01 9:03 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-07-01 7:46 [gentoo-hardened] binary protection mechanisms in different Linux distros Radoslaw Madej
2010-07-01 8:10 ` Daniel Kuehn [this message]
2010-07-01 8:16 ` Javier Juan Martínez Cabezón
2010-07-01 21:05 ` Radoslaw Madej
2010-07-01 21:08 ` Kyle Bader
2010-07-01 21:09 ` Kyle Bader
2010-07-01 23:12 ` Radoslaw Madej
2010-07-02 0:07 ` Matthew Thode
2010-07-02 0:13 ` Matthew Thode
2010-07-02 5:58 ` Javier Juan Martínez Cabezón
[not found] ` <20100702074146.GG28068@felinemenace.org>
2010-07-02 21:31 ` Radoslaw Madej
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20100701101044.0773a30b@Mobile-Workstation.localdomain \
--to=enhaisa@gmail.com \
--cc=gentoo-hardened@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox