Language Selection

English French German Italian Portuguese Spanish

Securing Slackware

Filed under
Linux
Using the exec-shield Kernel Patch on Slackware 10.1

by Kurt Fitzner

The Holy Grail of most any hacker trying to get access to a system is the remote buffer overflow attack. Well, actually, it's finding a Windows PC not protected by a firewall, but the remote buffer overflow attack is a (somewhat) close second. This article will discus one way to help protect against this type of attack on a Slackware Linux system with the installation of a special system called exec-shield.

This installation will occur in two phases. The first phase is installing the exec-shield kernel patch, the second is replacing some of Slackware's packages with ones that are compiled to work together with exec-shield.

What is a Buffer Overflow Attack?

Before we explain how to protect against a buffer overflow attack, it is useful to examine what exactly this attack is and what the ramifications are for an unprotected system.

The best way to secure against a buffer overflow attack is to run software that isn't vulnerable to such attacks.

In order for a malicious attacker to get your system to do what the attacker wants it to do by using a buffer overflow to rewrite a return address, the attacker has to know the exact address in memory on your system of a useful function.

Full Article.

More in Tux Machines

Ubuntu 15.04 Flavors Beta 1 Available to Download

Ubuntu 15.04 flavors have a first beta version, it now available to download and install for testing. In this release, There are only available images for Kubuntu, Lubuntu, Ubuntu Gnome, Ubuntu Kylin, Ubuntu MATE, Xubuntu and ubuntu cloud. Read more

Mozilla's *Really* Important News: Thunderbird Lives

So why does that matter? After all, there are lots of ways of accessing email, so why should we care whether Thunderbird has been semi-abandoned or not? As I wrote at the end of 2013, the world has changed dramatically in the wake of Edward Snowden's leaks about massive surveillance of our online activities. That makes using encryption crucial, and that, in its turn, gives Thunderbird a renewed importance, because it is currently one of the most popular ways for using GNU Privacy Guard, the free software version of the core PGP technology, via Enigmail. Indeed, it's fascinating to see from the Thunderbird blog post on "Active Daily Installations" that privacy-loving Germany headed the list with 1.7 million out of a total of 9.3 million (UK could only manage a rather feeble 254,000.) Read more

Install Steam In Ubuntu/Linux Mint And Play Amazing Games On Linux


Install Steam In Ubuntu/Linux Mint And Play Amazing Games On Linux

You are using Linux and thinking Linux does not support gaming.! If so, let me tell you that you are not aware of Steam. Steam is a gaming client that lets you play amazing games on Linux system. There are hundreds of free and paid games that you can play without searching the entire web. All at one place and easy to install! So let's get started!
 

Read At LinuxAndUbuntu

Blackphone unveils a new phone and tablet running secure, encrypted Android

Today at Mobile World Congress, the encrypted phone system Blackphone announced a new phone and tablet, along with a new business focus on enterprise. The phone is called the Blackphone 2, a successor to the first Blackphone shown at MWC last year, but adds a new processor, better screen, and a larger profile overall. The tablet, called the Blackphone+, is slated for release in the fall. Both run Blackphone's secure OS, forked off of Android, which is designed to protect metadata and provide end-to-end encryption throughout. Read more