Re: win32 svn 1.1.0-rc1 binaries posted

From: Jared W. Robinson <jwr_at_xmission.com>
Date: 2004-07-21 21:43:20 CEST

On Mon, Jul 19, 2004 at 06:51:19PM +0300, Ivan-Assen Ivanov wrote:
> MSVC7.1 has the /GS switch, which reduces the possibility of buffer
> overflow attacks. Which, in the case of server software like
> Subversion, is even more important than efficiency...

If you read either "Exploiting Software" pp. 57-65 or "Shellcoder's
Handbook" pp. 161-167, you'll have much less confidence in the /GS
switch. The sad truth is that using that switch can make it /easier/ to
exploit vulnerabilities. Maybe the next release of MSDev will improve
the /GS switch -- but who knows, really.

- Jared

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed Jul 21 21:43:57 2004

This message: [ Message body ]
Next message: Michael: "Re: svn memory leak -- better example"
Previous message: Max Bowsher: "win32 build generator bizarreness"
Maybe in reply to: Ben Collins-Sussman: "win32 svn 1.1.0-rc1 binaries posted"
Next in thread: François Beausoleil: "Re: win32 svn 1.1.0-rc1 binaries posted"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]