Nmap Development mailing list archives
Re: [PATCH] Experimental SCTP scan support
From: Fyodor <fyodor () insecure org>
Date: Sun, 4 Jan 2009 19:49:18 -0800
On Sat, Jan 03, 2009 at 10:39:49AM +0000, doug () hcsw org wrote:
On Sat, Jan 03, 2009 at 03:48:09AM -0600 or thereabouts, Kris Katterjohn wrote: ... For anyone not familiar with this error message, it is from a fairly recent addition to gcc called _FORTIFY_SOURCE. Kris observed this error because Ubuntu enables _FORTIFY_SOURCE=2 by default on all gcc compiles, unlike many other linux distros.
Sounds like a great feature! Anyone want to make a patch so that Nmap always uses this when available? It would be good for security, and may help us identify bugs which might otherwise go unnoticed (as we saw in this case). Ideally it would cover PCRE and OpenSSL too. The keys are: o Can't have a significant performance penalty (I don't think it would, but it is worth a few test scans to make sure). o Can't break the Windows compile or compilation in any other cases where the feature is unavailable. o Obviously, Nmap still has to work :). Cheers, -F _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- [PATCH] Experimental SCTP scan support Daniel Roethlisberger (Jan 02)
- Re: [PATCH] Experimental SCTP scan support Daniel Roethlisberger (Jan 02)
- Re: [PATCH] Experimental SCTP scan support Kris Katterjohn (Jan 02)
- Re: [PATCH] Experimental SCTP scan support Kris Katterjohn (Jan 03)
- Re: [PATCH] Experimental SCTP scan support doug (Jan 03)
- Re: [PATCH] Experimental SCTP scan support Daniel Roethlisberger (Jan 03)
- Re: [PATCH] Experimental SCTP scan support Fyodor (Jan 04)
- Re: [PATCH] Experimental SCTP scan support doug (Jan 04)
- _FORTIFY_SOURCE=2 David Fifield (Jan 22)
- Re: _FORTIFY_SOURCE=2 David Fifield (Feb 14)
- Re: [PATCH] Experimental SCTP scan support doug (Jan 03)
- Re: [PATCH] Experimental SCTP scan support Daniel Roethlisberger (Jan 03)
- Re: [PATCH] Experimental SCTP scan support Kris Katterjohn (Jan 03)
- Re: [PATCH] Experimental SCTP scan support Daniel Roethlisberger (Jan 03)
- Re: [PATCH] Experimental SCTP scan support Daniel Roethlisberger (Jan 03)
- Re: [PATCH] Experimental SCTP scan support Daniel Roethlisberger (Jan 03)
- Re: [PATCH] Experimental SCTP scan support pUm (Jan 04)