Theo de Raadt writes:
> Yes there are tools for that. google for "rop gadget scanner" and you'll
> find the first few.
>
> But that isn't the right approach.
>
> If you find just one gadget, how do you react? You can't the constant table
> to have different values.
>
> You move the table to ro
Theo de Raadt writes:
> This is a bit different than polymorphism (which is interpreting
> variable-sized instruction sequences at alternative offsets), but it is
> worse (data tables placed into code without giving a shit about the
> bytes in the data tables having meaning as instructions)
Is th
Theo de Raadt writes:
> This discussion relates to only one step of a number of potential increments.
>
> I believe it is a bad idea to conflate all of these potential address
> space recovery changes as the same singular discussion. Not all the
> decisions being made on intranets are sane. Not
Hi!
I'm working on a project with John Gilmore to make it possible for
people to make better use of historically reserved IPv4 address space.
In many cases address types were reserved in the 1980s for purposes
that made sense at the time but that are no longer relevant today.
There are several ch
