On Sun, 18 Feb 2007 10:03:37 -0700 Theo de Raadt <[EMAIL PROTECTED]> wrote:
> Oh really, "it has been stated". By who? Overall, I doubt that all > of our security technologies add more than about 2% of a performance > hit. Even a 'make build' on most architectures did not add that. I > think you need to go back and read my slides again. Spreading lies > about 5-10% performance hits is just not kind to our efforts. I've reread the slides again. I stand corrected when it comes to w^x & propolice, but I'm still not in the clear when it comes to randomized malloc & mmap. The slides from bsdcan 2004 state: "still failry expensive", the slides from opencon 2005 no longer mention anything about performance. // nick