What about ` -mindirect-branch=thunk -mindirect-branch-register `?
Thanks! Looks like NX is on by default
A quick search of the codebase doesn't find any mprotect() calls, so I'm
assuming it's just the compiler flags defaulting to NX on for the main
stack.
This answer helped me understand a bit
On 9/4/2018 3:03 PM, Chris Barker via Python-ideas wrote:
Chiming in here:
dataclasses was just added to the stdlib.
I understand that record class is not the same thing, but the use cases
do overlap a great deal.
So I think the cord goal for anyone that wants to see this in the stdlib
is
Chiming in here:
dataclasses was just added to the stdlib.
I understand that record class is not the same thing, but the use cases do
overlap a great deal.
So I think the cord goal for anyone that wants to see this in the stdlib is
to demonstrate tbat recordclass
Adds significant enough value
Hey Wes, the checksec() function in PEDA that you cited has a standalone
version as well:
https://github.com/slimm609/checksec.sh
Running this on my Python (installed from Ubuntu package):
$ checksec --output json -f /usr/bin/python3.6 | python3 -m json.tool
{
"file": {
"relro":
---
*Zaur Shibzukhov*
2018-09-03 1:02 GMT+03:00 Wes Turner :
>
> On Sunday, September 2, 2018, Zaur Shibzukhov wrote:
>
>>
>>
>> ---
>> *Zaur Shibzukhov*
>>
>>
>> 2018-09-02 22:11 GMT+03:00 Wes Turner :
>>
>>> Does the value of __hash__ change when attributes of a recordclass
>>> change?
>>>
This might be a bit off-topic. It's about the dangers of yaml.load.
Cameron Simpson and Steve D'Aprano wrote
>> So, if an application accepts user-supplied input (such as a JSON payload),
>> is that data marked as non-executable?
> Unless you've hacked the JSON decoder (I think you can supply a
On Tue, Sep 04, 2018 at 11:20:40AM +1000, Cameron Simpson wrote:
> On 03Sep2018 20:58, Wes Turner wrote:
> >So, if an application accepts user-supplied input (such as a JSON payload),
> >is that data marked as non-executable?
>
> Unless you've hacked the JSON decoder (I think you can supply a