Installing Libsafe 1.3 on SuSE 6.x
Home Page: Click here
I would like to thank the Libsafe project team for their work. I would
also like to thank Bell-Labs for releasing Libsafe under the GNU Library
General Public License.
Libsafe Project Members:
Arash Baratloo
Timothy Tsai
Navjot Singh
Description:
The libsafe library protects a process against the exploitation of buffer
overflow vulnerabilities in process stacks. Libsafe works with any
existing pre-compiled executable and can be used transparently, even on a
system-wide basis. The method intercepts all calls to library functions
that are known to be vulnerable. A substitute version of the
corresponding function implements the original functionality, but in a
manner that ensures that any buffer overflows are contained within the
current stack frame. Libsafe has been shown to detect several known
attacks and can potentially prevent yet unknown attacks. Experiments
indicate that the performance overhead of libsafe is negligible.
Before you begin, you have to check what shared loader version you have.
You should have 1.8.5 or better when using Libsafe 1.3. If you're running
SuSE 6.4 then you will have version 1.9.9 unless you updated to a newer
version. To check your version, use the command ls /lib/ld.so*
You will get a directory listing showing ld.so-*.*.* for example if you
had version 1.8.5 then you will see ld.so-1.8.5 easy enough. If you dont
have ld.so-1.8.5 you will need to update your shared loader.
You can get the latest version at www.gnu.org">href="http://www.gnu.org">www.gnu.org
1. Login as root
2. Get libsafe-1.3.tgz and
save it to your /tmp directory.
3. CD to your /tmp directory and untar the Libsafe .tgz file by using
the command tar -xvzf libsafe-1.3.tgz
4. CD to /tmp/libsafe
5. Run make by typing make
6. Now install Libsafe by using the command make install
Check to see if Libsafe installed, using the command ls
/lib/libsafe* You should get a file listing that shows the files
libsafe.so.1 and libsafe.so.1.3
The next steps involve setting up the LD_PRELOAD environment variable.
The Libsafe documentation says to put the entries in your /etc/profile
file. The problem with this is that YaST writes to this file and your
settings may be over written if you run YaST in the future.
To get around this, we will use the /etc/profile.local file instead.
7. Create the /etc/profile.local file if you dont already have one by
using the command touch /etc/profile.local
8. Edit the /etc/profile.local file and enter the following two lines:
LD_PRELOAD=/lib/libsafe.so.1
export LD_PRELOAD
9. Save you file and exit your editor (Dr SuSE uses vi while Sensei uses
pico :p)
10. Now set the permissions on your profile.local file using this command
chmod 644 /etc/profile.local
11. Log out of your machine, then log back in and your all set!
I'm running Libsafe on SuSE 6.4 using Metro X 4.3.4 and KDE 1.2. There
were no issues that I could see other than with Netscape 4.7 which was
very slow connecting to my proxy server initially. KFM nor StarOffice 5.1
had this problem when browsing the web. Just give Netscape a few extra
seconds and if that doesnt work, kill it and it will work fine the second
time around.
Good luck and have fun!
Dr SuSE
This NHF was written using WebMaker 0.8.5
|
