Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-08-2004 10:02 PM
тАО11-08-2004 10:02 PM
Re: Overflow
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-08-2004 10:53 PM
тАО11-08-2004 10:53 PM
Re: Overflow
stack guard pages is a nice idea, that has been thought of by others as well:
They __ARE__ implemented in IA64-VMS, and backporting that to AXP-VMS is under investigation, but there is some worry that it _MIGHT_ break existing code, so at best it would be with Switch-on/Switch-off functionality.
Info about IA64-VMS is from the Technical Update Days, about AXP-VMS is from a private discussion with Hoff afterwards.
Guess it is NOT such a bad idea then!
Cheers.
Have one on me.
Jan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-08-2004 11:32 PM
тАО11-08-2004 11:32 PM
Re: Overflow
That is a good notice. And I am glad that my philosophical thoughts are not allone. The on/off switch is good enought (if not switched off when porting or writing software which is sensible to attacks ;-)
Another thing abbout stack vulnerability is a non-executable stack (as you mentioned in this thread http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=721393 ). I think, that this must be implemented on all VMS platforms. I dont think that there are so much self constructing programs which builds the code on the stack and then execute this code. And if this is necesary it can be made in a different mode and not on the stack. Ok, for backward compatibility a special parameter can be implemented.
Bojan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-08-2004 11:47 PM
тАО11-08-2004 11:47 PM
Re: Overflow
Purely Personal Opinion
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-09-2004 12:37 AM
тАО11-09-2004 12:37 AM
Re: Overflow
Thanks, I was shure that the noexe flag of the psect does its work. Yust tested and you are right, the code executes fine in a:
.psect data,wrt,noexe
Maybe it will be good to implement it.
Bojan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-09-2004 02:25 AM
тАО11-09-2004 02:25 AM
Re: Overflow
It's been some years since I helped a customer to port from VAX to Alpha. He had one small MACRO source file and when I did:
$ macro/migrate pgm
well, the compiler spit out two pages of error messages. The customer responded with a big GULP!
Now, I did a short look over the source, inserted two lines and the result was:
$ macro/migrate pgm
$
He almost fell off the chair :-)
There simply was no PSECT in the source and I just created a CODE and a DATA psect.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-09-2004 03:11 AM
тАО11-09-2004 03:11 AM
Re: Overflow
It could be implemented so that old images works just like now. When you compile on the new version you receive a "protected" image, or with a qualifier to the compiler (or maybe to the linker, because I think this is an image activator problem) turn off the protection.
The problematic compiler is probably MACRO32 on VAX which can be upgraded to spit pages of error messages, as you say (nice verb for a bunch of errors :-).
With this new programs can be protected and, with time, all programs with a small number of exceptions will become protected.
Bojan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-09-2004 04:12 AM
тАО11-09-2004 04:12 AM
Re: Overflow
I don't think anything would be done for VAX/VMS but I think something could be done for alpha vms and itanium vms.
Parhaps its time for another entry on the hpadvocacy web site? (as well as discussing it with your favorite hp VMS contact).
Purely Personal Opinion
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-09-2004 10:01 PM
тАО11-09-2004 10:01 PM
Re: Overflow
as I still cannot enter deep enough into the Advocasy site (something with confusion about logging in the one site and address a mirror or the other way around, and then NOT being authorized on that. Being worked on),
would you please do the service?
I guess entering a pointer to this stream will get the message over.
Cheers.
Have one on me.
jpe
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-09-2004 10:37 PM
тАО11-09-2004 10:37 PM
Solution"Your issue will not appear immediately. All submitted issues are reviewed for posting each Monday. If there are questions about your issue submission, you will be contacted via email.
"
When it appears I will post a link here and you can all go and vote.
Purely Personal Opinion