Attacking hardened Linux systems with kernel JIT spraying

Posted Nov 19, 2012 13:23 UTC (Mon) by nix (subscriber, #2304)
In reply to: Attacking hardened Linux systems with kernel JIT spraying by aliguori
Parent article: Attacking hardened Linux systems with kernel JIT spraying

There's no doubt though that SMEP improves security though as generating uploading BPF routines is certainly a privileged (and restricted) capability.

In the presence of BPF seccomp filters, not as privileged and restricted as all that.