From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Date: Fri, 14 Jul 2006 01:26:33 +0400 From: Alexey Tourbin To: ALT Devel discussion list Message-ID: <20060713212633.GC15052@localhost.localdomain> Mail-Followup-To: ALT Devel discussion list References: <20060713071420.GZ13675@osdn.org.ua> <20060713090105.GA24210@basalt.office.altlinux.org> <20060713200720.GB15052@localhost.localdomain> <20060713202629.GB21039@basalt.office.altlinux.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="pAwQNkOnpTn9IO2O" Content-Disposition: inline In-Reply-To: <20060713202629.GB21039@basalt.office.altlinux.org> Subject: Re: [devel] Q: AltLinux/Kernels, prelink and address space randomization (and PIE) X-BeenThere: devel@lists.altlinux.org X-Mailman-Version: 2.1.7 Precedence: list Reply-To: ALT Devel discussion list List-Id: ALT Devel discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Jul 2006 21:26:30 -0000 Archived-At: List-Archive: List-Post: --pAwQNkOnpTn9IO2O Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Jul 14, 2006 at 12:26:29AM +0400, Dmitry V. Levin wrote: > > =F2=C1=CE=C4=CF=CD=C9=DA=C1=C3=C9=D1 =CE=C1 =D3=C1=CD=CF=CD =C4=C5=CC= =C5 =D0=D2=CF=C9=D3=C8=CF=C4=C9=D4 =CE=C5 per-process, =C1 per-exec. > > =FC=D4=CF =DA=CE=C1=DE=C9=D4, =DE=D4=CF =D7 =D3=C8=C5=CD=C5 =D3 privile= ge separation, =CB=CF=C7=C4=C1 =C7=CC=C1=D7=CE=D9=CA =D0=D2=CF=C3=C5=D3=D3 > > =C6=CF=D2=CB=C1=C5=D4=D3=D1 =C9 =D3=C2=D2=C1=D3=D9=D7=C1=C5=D4 =D0=D2= =C1=D7=C1, =CB=C1=D2=D4=C1 =C1=C4=D2=C5=D3=CF=D7 =D5 =CB=C1=D6=C4=CF=C7=CF = =C4=C5=D4=A3=CE=D9=DB=C1 =C2=D5=C4=C5=D4 > > =CF=C4=CE=C1 =C9 =D4=C1 =D6=C5. =E5=D3=CC=C9 =C8=C1=CB=C5=D2 =CE=C5 = =D5=C7=C1=C4=D9=D7=C1=C5=D4 =CE=D5=D6=CE=CF=C7=CF =C1=C4=D2=C5=D3=C1 =D3 = =D0=C5=D2=D7=CF=C7=CF =D2=C1=DA=C1, > > =D4=CF =C4=C5=D4=A3=CE=D9=DB =CD=D2=A3=D4, =CE=CF =DC=D4=CF =D1=D7=CC= =D1=C5=D4=D3=D1 =CE=C5=CE=D5=CC=C5=D7=CF=CA =C9=CE=C6=CF=D2=CD=C1=C3=C9=C5= =CA =C4=CC=D1 =D0=CF=D3=CC=C5=C4=D5=C0=DD=C9=C8 > > =D0=CF=D0=D9=D4=CF=CB. > >=20 > > =F4=CF =C5=D3=D4=D8 =C5=D3=CC=C9 =D5 =C4=C5=D4=A3=CE=D9=DB=C1 =CE=C5=D4= =D0=D2=CF=D3=CC=CF=CA=CB=C9 =C9=DA exec'=C1, =D4=CF=C7=C4=C1 > > =D0=CF=D3=CC=C5=C4=CF=D7=C1=D4=C5=CC=D8=CE=CF=D3=D4=D8 =D5=C7=C1=C4=D9= =D7=C1=CE=C9=CA =C9=CD=C5=C5=D4 =D3=CD=D9=D3=CC. =EF=D4 =D2=C1=CE=C4=CF=CD= =C9=DA=C1=C3=C9=C9 =D7 =CF=D3=CE=CF=D7=CE=CF=CD > > =D7=D9=C9=C7=D2=D9=D7=C1=C0=D4 "=D3=D5=D0=C5=D2=D3=C5=D2=D7=C5=D2=D9" = =D4=C9=D0=C1 inetd. >=20 > =F0=CF =DC=D4=CF=CA =D0=D2=C9=DE=C9=CE=C5, =CB=D3=D4=C1=D4=C9, =D7 =CE=CF= =D7=CF=CD openssh =D3=C4=C5=CC=C1=CE reexec - =C4=C5=D4=A3=CE=D9=DB > =D0=C5=D2=C5=DA=C1=D0=D5=D3=CB=C1=C5=D4 =D3=C5=C2=D1 (/proc/self/exe) =D0= =C5=D2=C5=C4 =CE=C1=DE=C1=CC=CF=CD =D2=C1=C2=CF=D4=D9. =FA=C1=DE=C5=CD =D4=CF=C7=C4=C1 reexec? =ED=CF=D6=CE=CF =D7=D9=CE=C5=D3=D4= =C9 =CB=CC=C9=C5=CE=D4=D3=CB=C9=CA =CB=CF=C4 =D7 =CF=D4=C4=C5=CC=D8=CE=D9= =CA =C2=C9=CE=C1=D2=D8 =C9 =D3=C4=C5=CC=C1=D4=D8 exec. =F7=D0=D2=CF=DE=C5=CD, =D1 =CE=C5 =DA=CE= =C1=C0, =CE=C1=D3=CB=CF=CC=D8=CB=CF =C1=D2=C8=C9=D4=C5=CB=D4=D5=D2=C1 opens= sh =DC=D4=CF =C4=CF=D0=D5=D3=CB=C1=C5=D4. =ED=CE=C5 =CE=D2=C1=D7=C9=D4=D3=D1 =CB=C1=CB = qmail =D3=C4=C5=CC=C1=CE, =D4=C1=CD =D7=D3=A3 =D0=CF=D3=D4=D2=CF=C5=CE=CF = =CE=C1 "=CD=C1=CC=C5=CE=D8=CB=C9=C8 exec'=C1=C8". =EB=D3=D4=C1=D4=C9, =DC=D4=CF = =CE=C1=D7=CF=C4=C9=D4 =CE=C1 =CD=D9=D3=CC=D8, =DE=D4=CF =D0=CF=C4=CF=C2=CE= =D9=C5 =D7=C5=DD=C9 =CE=D5=D6=CE=CF =D0=C9=D3=C1=D4=D8 =CE=C1 =CE=C5=CB=CF=C5=CD =D0=CF=C4=CF= =C2=C9=C9 =DB=C5=CC=CC=C1, =C1 =CE=C5 =CE=C1 =F3=C9. :) --pAwQNkOnpTn9IO2O Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFEtrqJfBKgtDjnu0YRAim3AKCTJ4H4qqU4pA//77+iBXisECQg5wCfQxhQ tune0nhMvos2r5Pdd3WunQg= =18w7 -----END PGP SIGNATURE----- --pAwQNkOnpTn9IO2O--