On Monday 20 May 2002 02:58, d_lord@gmx.de wrote:
Hi @ all
I' ve got a little question concerning the strip program. My server is not really fast and has very little RAM so I would like to strip some or all binaries. I tested it with ntop so far and it is working quite well as you can see.
user@server /test# ll ntop ntop.orig -rwx------- 1 user nobody 18368 May 20 02:29 ntop <-- stripped -rwx------- 1 user nobody 140571 May 20 02:07 ntop.orig user@server /test#
Stripping binaries doesn't affect the memory it occupies, it only makes sense to do this if you are limited on diskspace. You can use size to see how much memory a program needs and you will see there is no difference if you run size on the original and stripped version. If you are short of memory there are other things you can do: make your kernel as small as possible limit the number of virtual consoles only run services you really need See the Small-Memory howto, if it's installed it should be in /usr/share/doc/howto/mini there you find more tips on how to minimize memory usage.
I would also like to do this with sshd and some other services my system provides. So now my question is:
Does this (stripping a binary) affect security in any way? I think of bufferoverflows etc. Some important information may be lost if I have only 1/10 size. Right or wrong?
AFAIK wrong, unless you are stripping with the wrong options like -R and remove things which are needed and if it still runs maybe that could affect security.
Thanks for your time and opinion ;-)
D. Lord
PS.: What does this mailinglist check to verify the email? I can't use my own postfix server even if I specify the right From: adress in mutt. And it's really annoying to go to gmx just to post something to this list! Any hint?
Maybe your server rewrites the from address? -- GertJan