I was reminded today of how darned well Windows handles relocations and Address Space Layout Randomization. Relocations are 2 bytes each (24 bytes each for Linux) and relocated pages are shared (not shared on Linux). So, ASLR is almost free on Windows, which is good for security
I'm confused now. "shared code pages"? executable code pages should always be shared on Linux (modulo weird stuff like debugging or uprobes). the sharing you get through the zygote should only be stuff like the GOT (and obviously heap state and such).
-
-
I think Bruce just means in the zygote-model you don't get all benefits of per-process ASLR.
-
So, Windows defaults to ASLR which is cheaper (relocated pages shared) but less secure (addresses the same across processes). Does that lead to more exploits on Windows (due to cross-process address consistency) or fewer exploits on Windows (due to higher use of ASLR)? Thoughts?
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.