Non-exec stack is better
Posted Mar 18, 2005 18:36 UTC (Fri) by BrucePerens
Parent article: Address space randomization in 2.6
For the stack, making stack pages non-executable is better. I think it works for everything but X86-32, intel left a protection bit out of the page design and the Solar Designer patch (which nobody likes either because it uses a segment) can still protect stacks on X86-32. Can anyone confirm if X86-64 has the protection bit?
to post comments)