On Sat, Oct 14, 2017 at 1:15 AM, Luke Small <lukensm...@gmail.com> wrote:
> I am not certain about Braille, but what I am sure of is there is no > incremental process to guessing a 64 bit datum that changes every single > execution. I'll note that in OpenBSD, stack cookies are the size of a register, so they're only 32bits on archs like i386, armv7, macppc, etc. (If someone is interested in expanding them to 64bits on 32bits archs, they should step up and do the engineering: make some performance measurement of their existing system, implement the larger cookie via changes to gcc, clang, or both, then compare the performance afterwards.) > I typically don't state a fact unless I am willing to die if I am > incorrect. At least https://en.m.wikipedia.org/wiki/Blind_return_oriented_ > programming seems to state so. I dont fully trust wikipedia. So, circling back, uh, I'm not sure what this means for the original discussion. You're totally confident that OpenBSD's defenses are perfect and that therefore we can safely restart daemons? *If* that's what you're saying then, well, I continue to disagree with your conclusion and though I find your confidence in OpenBSD to be heartening, I believe it to be an over reach. Philip Guenther
