[SunHELP] RE: SunHELP digest, Vol 1 #1765 - 6 msgs
Tue Sep 24 12:56:53 CDT 2002
According to Sun (Sun Blueprints : Enterprise Security for Solaris OE):
set noexec_user_stack=1
set noexec_user_stack_log=1
makes the system stack "non-executable", helping to prevent buffer overflow
attacks. They make no mention about any shortcomings in making this change,
but my suggestion would be to make these adjustments in a non-productivew
system first to see how this affects your system. We are in the process of
making these changes, so I'll keep you informed on our progress if you like.
Matthew
> Message: 4
> From: "Devrim Yilmaz (Garanti Teknoloji)" <DevrimY at garanti.com.tr>
> To: sunhelp at sunhelp.org
> Date: Tue, 24 Sep 2002 12:06:42 +0300
> Subject: [SunHELP] Security question for /etc/system
>
> Hi friends;
>
> I will change /etc/system to add below parameters for bug
> overflow. But i
> wonder any reason not to add these. Do you have any idea and
> experience
> about that?
>
> Regards,
> dEVRim-
>
> set noexec_user_stack=1
> set noexec_user_stack_log=1
> set priority_paging=1
More information about the SunHELP
mailing list