grSecurity and PaX

A deep dive into memory protection mechanisms implemented by the grsecurity team in the Linux Kernel. The lecture covers the following mechanisms:

* Protection from arbitrary read/write of user buffers from/to the kernel (PAX_USERCOPY)

* Sanitation of kernel buffers within the SLAB allocator (PAX_MEMORY_SANITIZE)

* ASLR Implementation of the grSecurity team (PAX_ASLR, PAX_RANDSTACK).

You can also read the article that was published in DigitalWhisper here (Hebrew).

#Linux #Kernel #LinuxKernel #Security #grsecurity