BSDCan2014 - Final

BSDCan 2014
The Technical BSD Conference

Speakers
Shawn Webb
Schedule
Day Talks - Day 2 - Sat May 17 - 2014-05-17
Room Montpetit 201
Start time 13:30
Duration 01:00
Info
ID 452
Event type Lecture
Track Security
Language used for presentation English

Introducing ASLR in FreeBSD

Address-space layout randomization (ASLR) has existed in many operating systems for a number of years. The most famous implementation is the PaX patch for Linux's kernel. This presentation introduces and announces an ASLR implementation based on PaX for FreeBSD/amd64. Details regarding how ASLR has been ported to FreeBSD and some advanced features will be presented.

FreeBSD will soon be getting a port of PaX to 11-CURRENT/amd64. This presentation details changes to how ELF executables are loaded in memory and innovative workarounds for legacy applications that don't support (or misbehave) ASLR. Jails can have their own ASLR settings. Misbehaving applications can be run in a jail with ASLR turned off, while ASLR remains turned on in the other jails and in the host.