[Python-ideas] Executable space protection: NX bit,
Wes Turner
wes.turner at gmail.com
Mon Sep 3 03:00:14 EDT 2018
Rationale
=========
- Separation of executable code and non-executable data is a good thing.
- Additional security in Python is a good idea.
- Python should support things like the NX bit to separate code and
non-executable data.
Discussion
==========
How could Python implement support for the NX bit? (And/or additional
modern security measures; as appropriate).
What sort of an API would C extensions need?
Would this be easier in PyPy or in CPython?
- https://en.wikipedia.org/wiki/NX_bit
- https://en.wikipedia.org/wiki/Executable_space_protection
Here's one way to identify whether an executable supports NX:
https://github.com/longld/peda/blob/e0eb0af4bcf3ee/peda.py#L2543
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/python-ideas/attachments/20180903/a6817aba/attachment.html>
More information about the Python-ideas
mailing list