using -fPIE (was Re: mdev race conditions)

walter harms wharms at bfs.de
Tue Jun 10 16:52:05 UTC 2008



Denys Vlasenko wrote:
> On Wednesday 04 June 2008 14:20, walter harms wrote:
>> maybe this explanation is helpful
>>
>> http://gcc.gnu.org/ml/gcc-patches/2003-06/msg00145.html
> 
> Well, it explains what PIE is, but does not explain in which
> situations PIE bring some substantial benefits.
> We need a snippet of text which lets a user who didn't hear
> about PIE *at all* decide whether he needs it or not.
> --


SO far i understand PIE is only useful as countermeasure against
exploids using buffer overflows since it is no more easy to assume the address.
(perhaps that can be circumvented using PIE injection code, no idea).

For now i thing this is a custom compile option.

re,
 wh




More information about the busybox mailing list