Language Selection

English French German Italian Portuguese Spanish

Securing Slackware

Filed under
Linux
Using the exec-shield Kernel Patch on Slackware 10.1

by Kurt Fitzner

The Holy Grail of most any hacker trying to get access to a system is the remote buffer overflow attack. Well, actually, it's finding a Windows PC not protected by a firewall, but the remote buffer overflow attack is a (somewhat) close second. This article will discus one way to help protect against this type of attack on a Slackware Linux system with the installation of a special system called exec-shield.

This installation will occur in two phases. The first phase is installing the exec-shield kernel patch, the second is replacing some of Slackware's packages with ones that are compiled to work together with exec-shield.

What is a Buffer Overflow Attack?

Before we explain how to protect against a buffer overflow attack, it is useful to examine what exactly this attack is and what the ramifications are for an unprotected system.

The best way to secure against a buffer overflow attack is to run software that isn't vulnerable to such attacks.

In order for a malicious attacker to get your system to do what the attacker wants it to do by using a buffer overflow to rewrite a return address, the attacker has to know the exact address in memory on your system of a useful function.

Full Article.

More in Tux Machines

I Switched (Back) Over To Fedora As My Main OS & It's Going Great!

Before this long stint with Ubuntu on my main system, I was using Fedora (Core) and before that was openSUSE, Mandrake, and others. I stopped using Fedora (Core) due to some of the releases being less reliable than others with at the time less of a focus on shipping quality releases and at times just feeling like a dirty testing ground for RHEL. With being very pleased with Fedora 20 and Fedora 21 on the many test systems around the office, I decided to give Fedora another go on my main system. I've also been very interested in Fedora.Next and how Fedora 22 is shaping up. Fedora these days seems to be back on a solid footing for end-users with a bright future ahead; Fedora 22 might even ship on time for a change while not sacrificing quality! Fedora 21 brings back a lot of good memories for me of the early Fedora days. Read more

Elementary Extensions for Python-EFL

For those who are unaware the Enlightenment Foundation Libraries and Elementary are the tools that power the Enlightenment desktop and a growing number of other applications. To learn more about getting started with Elementary and python you should check out the full API reference here, the examples on git, or stop by #e.py on Freenode. I have been working on a number of small applications using Elementary. While building these applications I found myself reusing a few of the same gadgets in different places, so I had the idea others might find some of them useful as well. Read more

‘Enterprise customers are now more willing to implement open source’

Jim Whitehurst expects India to play a larger role in NYSE-listed Red Hat’s global strategy, thanks to the rapid pace of infrastructure creation. “When a new system’s put into place, it’s increasingly likely that it may be built on open source. We like places where there is a lot of infrastructure going in,” Whitehurst, President and Chief Executive Officer, Red Hat, said. Red Hat is the world’s largest commercial distributor of the open source-based Linux operating system. Open source denotes software for which the original source code is made freely available and may be redistributed and modified. In an interaction with BusinessLine, Whitehurst throws light on the opportunities in the Indian marketplace for open source. He also explains why the company is keen to increasingly move more support functions to India. Read more

The Navy's Newest Linux-Powered Command Center Is Right Out Of Star Trek

The DDG-1000 Zumwalt Class Destroyer could very well revolutionize the way the Navy does its surface warfare business. One of its biggest innovations is ditching the cramped, darkly lit Combat Information Center (CIC), a fixture for many decades on past USN combat ships, and replacing it with the state-of-the-art, spacious, Star Trek bridge-like Ship's Mission Center. Read more