摘要
缓冲区溢出漏洞问题是一种常见的程序漏洞,在所有的操作系统中平台上或多或少都存在着这样漏洞。文章首先介绍缓冲区漏洞的主要原因和常用的防范措施,然后深入讨论一种基于Libsafe的格式化串漏洞的防范和堆栈溢出防范技术的实现原理和方法。该方法容易实现,配置简单,只要配置LD_PRELOAD环境变量,操作系统就可以调用,不会给系统带来额外的负担,不需要重新编译已经存在的应用程序,可以防范很多未知的缓冲区溢出漏洞。
Buffer overflow is a kind phenomenon that we often meet in many computer operating system,In this paper reason and anti-measure, of buffer overflow were introduced firstly,and than, discuss how to prevent system from buffer overflow by Libsafe format string and stack overflow,compared other anti-buffer overflow this way look more easy to implement and configure, only configure the LD_PRELOAD environment variable the operating system can recall and keep away some buffer overflow unknowed in advance without recompiled the application program.
出处
《电脑知识与技术》
2006年第7期86-87,共2页
Computer Knowledge and Technology
