[CentOS] Information about ASLR (Address Space Layout Randomization) in CentOS 5
Tony Mountifield
tony at softins.clara.co.uk
Fri Dec 12 17:07:16 UTC 2008
In article <e814db780812120817m39bdf309l9591f53c90cb38b1 at mail.gmail.com>,
Filipe Brandenburger <filbranden at gmail.com> wrote:
> Hi,
>
> On Fri, Dec 12, 2008 at 11:10, Tony Mountifield
> <tony at softins.clara.co.uk> wrote:
> > From what I've been able to find, you can disable ASLR completely by
> > putting the following line in /etc/sysctl.conf:
> > kernel.randomize_va_space = 0
>
> Thanks, I had just found that out, we tested it and indeed it works.
>
> > Alternatively, you can run your program with ASLR disabled by using
> > setarch to invoke it:
> > setarch `uname -m` -R yourprog <yourprogoptions>
>
> I didn't know about this one, sounds good. I'll have a good look at
> "man setarch" and also try this out in the next couple of days.
>
> Quick question: from "man setarch", the effect of using -R is "turns
> on ADDR_NO_RANDOMIZE". Is it possible to use this flag
> ADDR_NO_RANDOMIZE somewhere that will force that binary to use that
> option always? I've read something about ELF headers, I wonder if that
> is something that could be set there, and if it is, how do I change
> the ELF headers to set it?
I didn't get as far as looking up ADDR_NO_RANDOMIZE, so can't answer your
question. But at least it's something more specific to google!
Glad the other suggestion worked.
Cheers
Tony
--
Tony Mountifield
Work: tony at softins.co.uk - http://www.softins.co.uk
Play: tony at mountifield.org - http://tony.mountifield.org
More information about the CentOS
mailing list