login
Search
OpenBSD creator Theo de Raadt [interview] will be speaking at pacsec in Japan in November. He explains:
"I'll be talking about the various tweaks that can be made to the environment that processes live in... tweaks that make attacking the system more much much difficulty, while at the same time ensuring that everything else still operates properly. This includes the propolice, W^X, random allocations, atexit and stdio cleanup vector protection, and even the guard page ideas that are being worked on. I will try to explain the subtle concept of why sometimes one or other of these is not as comprehensive as one might like, because it affects some software, and must be tuned back... to cope with reality."
From: Theo de Raadt [email blocked] To: misc Subject: pacsec.jp Date: Thu, 09 Oct 2003 15:32:01 -0600 Not sure if many of you have noticed that I will be speaking at pacsec in japan in a few weeks. I'll be talking about the various tweaks that can be made to the environment that processes live in... tweaks that make attacking the system more much much difficulty, while at the same time ensuring that everything else still operates properly. This includes the propolice, W^X, random allocations, atexit and stdio cleanup vector protection, and even the guard page ideas that are being worked on. I will try to explain the subtle concept of why sometimes one or other of these is not as comprehensive as one might like, because it affects some software, and must be tuned back... to cope with reality. And since I know that the conference is too expensive for the PaX shrills to attend, and because they seem to spend such an incredible amount of effort debasing our efforts, and because their development leaders actively participate in these attacks by not limiting the actions of their shrills (this is the biggest problem), I am going to have a LOT OF FUN getting digs in about PaX, about the PaX shrills, and also the PaX development leaders, all of who spend so much time telling lie after lie and completely disregard the possibility that these efforts came about in parallel. I'm going to make sure the entire Japanese audience looks upon PaX in an entirely different way than you want them to. Because the PaX shrills have *asked for this with their actions and words*. Come on, PaX shrills. Yell more about how we copied your stuff. And for everything you moan and groan about, I'll add another anti-PaX slide to my presentation. You wanted an arms race? You've got it. Perhaps a discussion about the PaX shrills will become a standard part of every talk I give. Go ahead, get really really mad. Or wake up and start being decent people.
