28 Dec
2004
28 Dec
'04
06:11
On Tuesday 28 December 2004 05:00, Derek Fountain wrote:
Will SUSE start to support it? I don't know. There are performance penalties involved with installing canary bytes before function calls and then checking them afterwards.
I read somewhere at linuxfromscratch that these penalties are so small that they're virtually negligible even for performance critical apps.
... The answer is to get the code right, or if that can't be guaranteed, to write the code in a language that isn't vulnerable
Isn't this wishful thinking or unfeasable to a certain degree? I just thought if OpenBSD ships with SSP it must have noticeable advantages, otherwise they hadn't included it. Malte