[CentOS] Information about ASLR (Address Space Layout Randomization) in CentOS 5

Tony Mountifield tony at softins.clara.co.uk
Fri Dec 12 17:07:16 UTC 2008


In article <e814db780812120817m39bdf309l9591f53c90cb38b1 at mail.gmail.com>,
Filipe Brandenburger <filbranden at gmail.com> wrote:
> Hi,
> 
> On Fri, Dec 12, 2008 at 11:10, Tony Mountifield
> <tony at softins.clara.co.uk> wrote:
> > From what I've been able to find, you can disable ASLR completely by
> > putting the following line in /etc/sysctl.conf:
> > kernel.randomize_va_space = 0
> 
> Thanks, I had just found that out, we tested it and indeed it works.
> 
> > Alternatively, you can run your program with ASLR disabled by using
> > setarch to invoke it:
> > setarch `uname -m` -R yourprog <yourprogoptions>
> 
> I didn't know about this one, sounds good. I'll have a good look at
> "man setarch" and also try this out in the next couple of days.
> 
> Quick question: from "man setarch", the effect of using -R is "turns
> on ADDR_NO_RANDOMIZE". Is it possible to use this flag
> ADDR_NO_RANDOMIZE somewhere that will force that binary to use that
> option always? I've read something about ELF headers, I wonder if that
> is something that could be set there, and if it is, how do I change
> the ELF headers to set it?

I didn't get as far as looking up ADDR_NO_RANDOMIZE, so can't answer your
question. But at least it's something more specific to google!

Glad the other suggestion worked.

Cheers
Tony
-- 
Tony Mountifield
Work: tony at softins.co.uk - http://www.softins.co.uk
Play: tony at mountifield.org - http://tony.mountifield.org


More information about the CentOS mailing list