On Jan 16, 2008 11:28 PM, Eduardo Tongson <[EMAIL PROTECTED]> wrote: > Good evening Rogelio, > > I think that ASLR bruteforce you are talking about is either the > Phrack article or the ACM paper . In real world applications specially > in network daemons it would generate lots of noise. With the Linux > kernel's logging > <http://blog.eonsec.com/2007/12/segmentation-fault-logging.html> and > Grsec's logging it should not get pass by any good admin's radar. > > So it is not useless, but weak. However a defense mechanism stacked > over another will only help hamper the bad guys. >
Its still very useful if used with overflow protection and a good MAC. -- Lay low and nourish in obscurity _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
