I just read about how ASLR helps in preventing buffer overflow attacks and would like to have a look at its implementation.
Could someone offer a few pointers on where I could start looking? I would also love it if you could point me towards more reading material related to the same.
该实现自然可以在 Linux 内核源代码树中找到。即使只是 grepping for.. randomize_va_space 也会出现足够的结果来开始。
在精灵加载器中#ifdef arch_randomize_brk -> arch_randomize_brk -> randomize_range
如何使用?
https://lkml.org/lkml/2010/11/30/110
那是什么?
http://en.wikipedia.org/wiki/Address_space_layout_randomization
为什么?
为了防止两种类型的攻击:
http://en.wikipedia.org/wiki/Return-to-libc_attack
http://en.wikipedia.org/wiki/Return-oriented_programming
因为如果固定在内存中,两种攻击都会假设您的代码区域。