* Peter Gutmann quotes CNET: > GCC 4.0 also introduces a security feature called Mudflap, [...]
> So you have an interesting definition of a security feature as "the > bit you disable before the product goes into the environment where > it'll be subject to attack". Actually, mudflap is not a security feature (and I'd be surprised if Mark claimed it was). It's a debugging tool, not a silver bullet. mudflap simply wasn't designed to stop buffer overflow exploits (or to make them at least somewhat harder), but to find memory management bugs. --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]
