Finally giving up on MPROTECT for my main workstation running @grsecurity. Too much hassle, JITs are everywhere on desktop systems.
-
@grsecurity Wondering just how much would be affected/lost performance I turned on USE=jit and restarted to a rather broken KDE session.
@grsecurity I don't have a good idea to improve MPROTECT to help here, but in its current form it's just too much pain for modern desktops
-
-
@grsecurity How much value does MPROTECT really have? If you can ROP your way to mmap()/mprotect() surely you can just write/run a binary...Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@marcan42 Out of curiosity, are/were you going to except your browser? -
@comex Chromium has always had a default paxmark exception on Gentoo, been using that for ages. But now I just turned MPROTECT off globally. - Show replies
New conversation -
-
-
@marcan42 I'm generally skeptical of JIT bans because they're ~always possible to work around and usually not terribly hard.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.