Language Selection

English French German Italian Portuguese Spanish

Securing Slackware

Filed under
Linux
Using the exec-shield Kernel Patch on Slackware 10.1

by Kurt Fitzner

The Holy Grail of most any hacker trying to get access to a system is the remote buffer overflow attack. Well, actually, it's finding a Windows PC not protected by a firewall, but the remote buffer overflow attack is a (somewhat) close second. This article will discus one way to help protect against this type of attack on a Slackware Linux system with the installation of a special system called exec-shield.

This installation will occur in two phases. The first phase is installing the exec-shield kernel patch, the second is replacing some of Slackware's packages with ones that are compiled to work together with exec-shield.

What is a Buffer Overflow Attack?

Before we explain how to protect against a buffer overflow attack, it is useful to examine what exactly this attack is and what the ramifications are for an unprotected system.

The best way to secure against a buffer overflow attack is to run software that isn't vulnerable to such attacks.

In order for a malicious attacker to get your system to do what the attacker wants it to do by using a buffer overflow to rewrite a return address, the attacker has to know the exact address in memory on your system of a useful function.

Full Article.

More in Tux Machines

today's howtos

Leftovers: Gaming

Red Hat and Fedora

Leftovers: Ubuntu

  • Unity 8, Mir, Snappy & Other Focuses For Next Week's Ubuntu UOS-1605
    Next week is UOS-1605: the latest Ubuntu Online Summit where planning will take place for Ubuntu 16.10, the Yakkety Yak release. The UOS-1605 schedule is beginning to fill up for this event running from Tuesday (3 May) to Thursday (5 May). To not much surprise, the big topics are about Snappy for package manager, Mir, and the next-generation Unity 8 desktop with the overall convergence focus. Here are some of the highlights for the events on the schedule right now.
  • UK-based Entroware launches 14 inch Ubuntu laptop with Intel Skylake
    Entroware is one of a handful of companies that exclusively sells computers that are pre-loaded with Linux-based operating systems. And the UK-based company has just added a new model to its lineup.
  • Ubuntu 16.10 Yakkety Yak — Release Date, Features, Live ISO Build Download
    Canonical has officially started the development cycle of Ubuntu 16.10 Yakkety Yak. As we move ahead with the development, we’ll be knowing more about the new changes and big features of Ubuntu 16.10 Yakkety Yak. Meanwhile, if you are willing to adopt the upcoming iteration of Ubuntu, you can download the Live ISO Builds.