tools-hardened/desktop: initial commit of hardened amd64 desktop
This is a revamping of the TinHat build, see
http://opensource.dyc.edu/tinhat
Signed-off-by: Anthony G. Basile <blueness@gentoo.org>
This commit is contained in:
Devan Franchini
Anthony G. Basile
parent
1c585a9f2b
commit
b80e4e5ff8
93 changed files with 21658 additions and 0 deletions
25
tools-hardened/desktop/files/Utilities/README
Normal file
25
tools-hardened/desktop/files/Utilities/README
Normal file
|
|
@ -0,0 +1,25 @@
|
|||
This directory contains utilities which are relavant to
|
||||
Tin Hat's design goals. . As of the current release,
|
||||
there is only one, but more will be added.
|
||||
|
||||
1. checksec.sh - Checks binaries or running processes for
|
||||
the following security enhancements:
|
||||
|
||||
RELRO - Default Read Only Marking.
|
||||
STACK CANARY (aka SSP) - Stack Smashing Protector
|
||||
NX - No eXecute
|
||||
PIE - Position Independent Executables
|
||||
ASLR - Address Space Layout Randomization
|
||||
|
||||
For a better explanation of these see
|
||||
|
||||
http://www.gentoo.org/proj/en/hardened/hardened-toolchain.xml
|
||||
http://en.wikipedia.org/wiki/NX_bit
|
||||
http://en.wikipedia.org/wiki/ASLR
|
||||
|
||||
|
||||
This script was written by Tobias Klein. Thank you!
|
||||
See his informative blog at
|
||||
|
||||
http://www.trapkit.de
|
||||
|
||||
Loading…
Add table
Add a link
Reference in a new issue