On Tue, Dec 28, 2004 at 03:03:47AM +0100, Malte Gell wrote:
Hi there,
Hello.
I'm just playing a bit with IBM's SSP ( http://www.research.ibm.com/trl/projects/security/ssp/ ) and GCC 3.4.1. Since OpenBSD, Gentoo and others already ship with it, i wonder what do the SuSE security people think about SSP? Will SuSE support it in the future and if not, why? Is SSP really such an improvement as some say it is?
We evaluated various solutions. The problem is that some are very intrusive and most can be bypassed. We are aware of the fact that we *need* such a protection and are working hardly to get it done. -- Bye, Thomas -- Thomas Biege <thomas@suse.de>, SUSE LINUX AG, Security Support & Auditing -- Teachers should prepare the student for the student's future, not for the teacher's past. -- Richard W. Hamming