Like premature optimization (the root of all evil), is there an analogous concept of "premature hardening"? Are cons comparable?
-
-
Replying to @RichFelker
you mean hardening that hard for people to understand/work-with? if so, SELinux is good example,other MACs are easier (AppArmor)
1 reply 0 retweets 1 like -
Replying to @e3amn2l
Different people have different definitions of hardening I guess.
1 reply 0 retweets 0 likes -
Replying to @RichFelker @e3amn2l
I use "hardening" to refer to measures that increase difficulty or entirely prevent exploitation of an otherwise-exploitable bug.
1 reply 0 retweets 0 likes -
Replying to @RichFelker @e3amn2l
Things like ASLR, stack protector & other types of overflow checks, fortify, various ROP prevention measures, etc.
2 replies 0 retweets 0 likes -
Replying to @RichFelker
I was thinking on what may fit in "premature hardening" (as more examples), not aware of corresponding term
1 reply 0 retweets 0 likes
[Overly?] complex access control models, etc. are a related topic but not the one I was talking about.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.