position-independent code; locate libraries at random offsets
Can we compile all program code automatically to be position-independent? And will the OS's ASLR support kick in, then?
What about randomizing the distance between first local var and %eip, so that attacker can't predict %eip easily? (Prof in software security course mentioned this technique in passing; is it used? If not, why not?)
position-independent code; locate libraries at random offsets
Can we compile all program code automatically to be position-independent? And will the OS's ASLR support kick in, then?
What about randomizing the distance between first local var and %eip, so that attacker can't predict %eip easily? (Prof in software security course mentioned this technique in passing; is it used? If not, why not?)