Prelink and address space randomization
Posted Jul 7, 2006 0:49 UTC (Fri) by nix
In reply to: Prelink and address space randomization
Parent article: Prelink and address space randomization
prelinking only the most used binaries won't necessarily help; that will necessarily prelink libc and ld.so as well, and while these will benefit from ASLR when a non-prelinked app is run, if the attacker can wander around the libc's ELF structures it can determine what its preferred load address is in any case, even though it wasn't actually loaded there.
Personally, I prelink non-network-exposed systems only (and make my network-exposed systems stripped-down UML instances).
to post comments)