Go Back   DaemonForums > FreeBSD > FreeBSD Security

FreeBSD Security Securing FreeBSD.

Thread Tools Display Modes
  #1   (View Single Post)  
Old 11th January 2013
bryn1u bryn1u is offline
Port Guard
Join Date: May 2009
Posts: 19
Default Stack Protector (PaX) for FreeBSD

'm going to make other server with full ssh options for users. I was wondering, is in freebsd any protector against buffer overflow and performance against malware (exploits etc.) ? I was reading official user's lists about this thread. SSP has implemented since FreeBSD 8.0 but only for base system ! How problem looks with softwares ports/package ? Is there any implemented SSP or something like that ? I'm trying find some informations about PaX (equivalent stack protector in grsecurity). I can't find any informations about this problem, why is that such dead topic when is very important ? Yes i know about MAC, TrusteBSD etc. but it's not solutions on my problem.
Reply With Quote
  #2   (View Single Post)  
Old 14th January 2013
bryn1u bryn1u is offline
Port Guard
Join Date: May 2009
Posts: 19

I'm going to answer myself !

$ sysctl -da | fgrep stack
kern.elf64.nxstack: ELF64: enable non-executable stack
kern.elf32.nxstack: ELF32: enable non-executable stack
security.bsd.stack_guard_page: Insert stack guard page ahead of the growable segments.
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
How to configure OpenBSD (5.1) to make use of Comcast's native dual stack IPv6 SlyM OpenBSD General 7 11th March 2013 10:27 PM

All times are GMT. The time now is 06:52 AM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2023, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick