[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ossec-dev] Re: [PATCH] use stack protector on never gcc versions that support it

To: ossec-dev@xxxxxxxxx
Subject: [ossec-dev] Re: [PATCH] use stack protector on never gcc versions that support it
From: "Jeff Schroeder" <jeffschroed@xxxxxxxxx>
Date: Mon, 20 Aug 2007 21:09:52 -0700
Authentication-results: mx.google.com; spf=pass smtp.mail=ossec-dev+caf_=ossec-dev=googlegroups.com@xxxxxxxxx; dkim=pass (test mode) header.i=@xxxxxxxxx
Authentication-results: mx.google.com; spf=pass (google.com: domain of jeffschroed@xxxxxxxxx designates 209.85.198.188 as permitted sender) smtp.mail=jeffschroed@xxxxxxxxx; dkim=pass (test mode) header.i=@xxxxxxxxx
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:reply-to:to:subject:mime-version:content-type; b=Df021yQm/Q9sFFq8IYQLAIdu5DWyL+4GgpDB2bSl19kCH98gCCNAkMh8mfy+PoBHlUxrfnOfY/cRpPu0hcvMXtiHzd7+h60JnGHHe8r+4Qaj/kMVsSGkNYmejBwrBtayOHSuonZfrCg14kSxlFvh6/AuY0NHcLk5DmRfYoK3Lu8=

Sorry, my host has had dns issues and doesn't seem to care about it
that my website is down even though they cash my check... I'll be
switching very soon.

It looks like they are back up, but the patch is attached just in case.

-- 

Jeff Schroeder

Don't drink and derive, alcohol and analysis don't mix.

Index: shared.h
===================================================================
RCS file: /usr/cvsroot/ossec-hids/src/headers/shared.h,v
retrieving revision 1.35
diff -u -r1.35 shared.h
--- shared.h	10 Aug 2007 00:56:22 -0000	1.35
+++ shared.h	16 Aug 2007 01:20:38 -0000
@@ -9,9 +9,25 @@
  * Foundation
  */
 
-/* v0.2 (2005/12/23): Adding 'u_int16_t' for Solaris.
+/* v0.3 (2007/12/23): Adding SSP & FORTIFY_SOURCE <jeffschroeder@xxxxxxxxxxxx>
+ * v0.2 (2005/12/23): Adding 'u_int16_t' for Solaris.
  * v0.1 (2005/10/27): first version.
  */
+
+/*
+ *  The stack smashing protector defeats some BoF via: gcc -fstack-protector
+ *  Reference: http://gcc.gnu.org/onlinedocs/gcc-4.1.2/cpp.pdf
+ */
+#if defined(__GNUC__) && (((__GNUC__ == 4) && (__GNUC_MINOR__ >= 1) && (__GNUC_PATCHLEVEL__ >= 2)) || \
+                          ((__GNUC__ == 4) && (__GNUC_MINOR__ >= 2)) || \
+                           (__GNUC__ >= 5))
+
+/* Heuristicly enable the stack protector on sensitive functions */
+#define __SSP__ 1
+
+/* FORTIFY_SOURCE is Redhat / Fedora specific */
+#define FORTIFY_SOURCE
+#endif
 
 #ifndef __SHARED_H

Prev by Date: [ossec-dev] Re: use stack protector on never gcc versions that support it
Next by Date: [ossec-dev] [Bug 59] New: Windows UI not taking the server-hostname tag into consideration
Previous by thread: [ossec-dev] Re: New: We need a place to keep custom decoders
Next by thread: [ossec-dev] [Bug 59] New: Windows UI not taking the server-hostname tag into consideration
Index(es):
- Date
- Thread

OSSEC home | Main Index | Thread Index

OSSEC project: www.ossec.net.
Mailling list information: http://www.ossec.net/en/mailing_lists.html.