[SC-L] Intel turning to hardware for rootkit detection
Chris Wysopal
weld at vulnwatch.org
Wed Dec 14 12:38:40 EST 2005
On Wed, 14 Dec 2005, ljknews wrote:
> At 9:14 AM -0500 12/14/05, Gary McGraw wrote:
> > No, that's a copy of stackguard. The real problem with all of these
> > approaches is that they don't fix the root problem. Finding and removing
> > buffer overflow conditions with a static analysis tool is far superior.
>
> But still better is using a programming language that does not allow
> buffer overflows.
This isn't a solution to code that is already deployed which is the
problem that stackguard and static analysis address.
-Chris
More information about the SC-L
mailing list