I'm aware that OpenBSD's developers create new technology for making
the exploiter's life harder. On the OpenBSD site I could find a list
of some of those kinda features (following this paragraph). Yet, I
could not find any article describing all those ideas. Does anyone
know what would be considered a good source for learning them?
* strlcpy() and strlcat()
* Memory protection purify
o W^X
o .rodata segment
o Guard pages
o Randomized malloc()
o Randomized mmap()
o atexit() and stdio protection
* Privilege separation
* Privilege revocation
* Chroot jailing
* New uids
* ProPolice
* ... and others