Attacking hardened Linux systems with kernel JIT spraying
Attacking hardened Linux systems with kernel JIT spraying
Posted Nov 19, 2012 16:56 UTC (Mon) by randomguy3 (subscriber, #71063)In reply to: Attacking hardened Linux systems with kernel JIT spraying by patrick_g
Parent article: Attacking hardened Linux systems with kernel JIT spraying
A PaX hardened kernel with JIT disabled is (probably) more secure than mainline (in this regard).
A PaX hardened kernel with JIT enabled is (probably) just as insecure as mainline (in this regard). This is because the JIT can be used to work around the extra security that PaX provides.
A PaX hardened kernel is (probably) never less secure than mainline (in this regard).