I'm not convinced ASLR is worth the memory overhead. Someone tell me why I'm wrong please.
-
Show this thread
-
Replying to @Brittain_Ben
It requires attackers to find a pointer leak primitive. One more hoop attackers have to jump through. That’s usually worth it.
1 reply 0 retweets 4 likes -
Replying to @fugueish @Brittain_Ben
Good point, 32-bit and 64-bit give attackers very different probabilities of success.
1 reply 0 retweets 1 like -
Am I wrong that the attacker usually has the ability to do repeated attempts?
1 reply 0 retweets 0 likes -
Replying to @Brittain_Ben @fugueish
Sometimes yes, but the math still doesn’t work out in their favor on 64-bit. That’s a very wide address range.
0 replies 0 retweets 0 likes -
Ah, so the statement is actually more "ASLR makes attacks sufficiently noisy that managed devices can report prior exploits"
0 replies 0 retweets 0 likes
Replying to @fugueish @Brittain_Ben
Fail2ban for web browsers :)
3:46 PM - 10 Dec 2019
0 replies
0 retweets
3 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.