Linux缓冲区溢出攻击的防范
Defense of Linux buffer overflow
摘要
缓冲区溢出攻击是最为常见的计算机攻击手段之一。通过分析Linux缓冲区溢出的原理,提供了一种可以防范系统缓冲区溢出攻击的方法,并在Linux系统上实现。
Buffer overflow attack is one of the most popular computer attack. In this paper, we analysis the principle of the buffer overflow and provide a method to defend the buffer overflow attack.
出处
《核电子学与探测技术》
CAS
CSCD
北大核心
2005年第6期698-700,723,共4页
Nuclear Electronics & Detection Technology
参考文献10
-
1Buffer-overflow- A searehseeurity definition.http..//searchsecurity, techtarget, com/sDefinition/0, ,sidl4_gci 549024,00. html.
-
2Eichin M, et al. "with microscope and tweezers: an analysis of the Internet virus of Nov. 1988," 1989 IEEE Symposium on Security and Privacy, Oakland, CA.
-
3Crispin Cowan Perry et al. "Buffer-overflows: Attacke and Defenses for the Vulnerability of the Decade". ,available at http ://www. cse. ogi. edu/ DISC/projects/immunix/publications. html.
-
4David Wagner, et al. "A first step towards automated detection of buffer overrun vulnerabilities", Aiken NDSS 2000, available at http://www, cs. berkele, edu/~ daw/papers/overruns-ndss00, ps.
-
5David Wagner, et al. A first step towards automated detection of buffer overrun vulnerabilities", Aiken. NDSS 2000,available athttp,//www, cs. berkeley, edu/~daw/ papers/overruns-ndss00, ps.
-
6David Larochelle, et al. "Statically detection likely buffer overflow vulnerabilities", In 2001 USENLX Security Symposion, Washington, D.C., August 13-17,2001.
-
7Crispin Cowan, et al. "Protecting Systems from Stack Smashing Attacks with StackGuard". Presented at the 5th Linux Expo. May, 1999, Raleigh, NC.
-
8"Solar Designer". , Non-Executable User Stack. http ://www. false, com/security/linux-stack/.
-
9SecureStack. http ://www. securewave, com/html/ secure-stack, html.
-
10PageExes. http ://pageexec. virtualave, net/pageexec. txt.
