Linked by Dareka on Fri 19th Apr 2013 10:40 UTC
BeOS & Derivatives "Starting with hrev45522, address space layout randomization (ASLR) and data execution prevention (DEP) are available in Haiku. These two features, which have actually become a standard in any modern OS, make it much harder to exploit any vulnerability that may be present in an application running on Haiku, thus generally improving system security."
Thread beginning with comment 559399
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[2]: In the sidebar?
by Vanders on Sun 21st Apr 2013 13:39 UTC in reply to "RE: In the sidebar?"
Vanders
Member since:
2005-07-06

Uhhh...how EXACTLY is this interesting? ASLR and DEP are fine and dandy for OSes that are being actively targeted but for haiku this is as useless as tits on a boar hog as we say down here.

ASLR and DEP can also help developers find bugs: things like dangling pointers to unreferenced memory quickly become apparent, for example.

Reply Parent Score: 4

RE[3]: In the sidebar?
by bassbeast on Sun 21st Apr 2013 21:54 in reply to "RE[2]: In the sidebar?"
bassbeast Member since:
2007-11-11

Well then TFA should say that, as not all of us are programmers and a little info can make all the difference.

Heck i learned more from you and that guy that posted in the thread about how shoddy some of the code is in Haiku (which he says is thanks to the GSoC bringing in junior programmers) than I did in the article itself.

Reply Parent Score: 2

RE[4]: In the sidebar?
by anevilyak on Sun 21st Apr 2013 23:13 in reply to "RE[3]: In the sidebar?"
anevilyak Member since:
2005-09-14


Heck i learned more from you and that guy that posted in the thread about how shoddy some of the code is in Haiku (which he says is thanks to the GSoC bringing in junior programmers) than I did in the article itself.


I'd suggest taking that other poster with a grain of salt. If he ever fixed anything about the pcnet driver, he never submitted a patch, and his name is otherwise not known as far as the community goes. Furthermore, there have been nearly identical comments about code quality posted by other people in past Haiku stories, which have been asked for details and/or examples of said shoddy code, at which the poster in question promptly disappeared without ever answering. I would regard that comment as hot air unless he intends to actually prove otherwise. There's also nothing wrong with the quality of code from the GSoC students, they do have mentors that review their code for good reason, and they're generally quite capable since the competition for a spot in GSoC is quite fierce, which tends to weed out the less able ones.

Edited 2013-04-21 23:15 UTC

Reply Parent Score: 4

RE[3]: In the sidebar?
by moondevil on Mon 22nd Apr 2013 11:18 in reply to "RE[2]: In the sidebar?"
moondevil Member since:
2005-07-08

ASLR and DEP can also help developers find bugs: things like dangling pointers to unreferenced memory quickly become apparent, for example.


A better solution for this is to have warnings as errors and make static analyzers part of the build process.

Reply Parent Score: 3