memory pages nulling when releasing
Oliver Fromme
olli at lurza.secnetix.de
Tue Jun 20 12:19:27 UTC 2006
Nick Borisov <neiro21 at gmail.com> wrote:
> Dag-Erling Smørgrav <des at des.no> wrote:
> > "Nick Borisov" <neiro21 at gmail.com> wrote:
> > > Could you tell me if FreeBSD supports memory page nulling when
> > > releasing it to prevent unauthorized access to data left in the page
> > > after it's allocated again.
> >
> > Processes always get zeroed pages from the kernel. This is the case
> > for all Unices, and has been for decades.
>
> Well, providing zeroed pages to processes is not quite similar to
> explicit cleaning of pages after use as some security standards
> demand.
If that's what you mean, then why not simply use memset()
after use? (And of course use mlock().)
If that's not what you mean, then please explain _exactly_
what you mean.
Best regards
Oliver
--
Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing
Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd
Any opinions expressed in this message may be personal to the author
and may not necessarily reflect the opinions of secnetix in any way.
"With sufficient thrust, pigs fly just fine. However, this
is not necessarily a good idea. It is hard to be sure where
they are going to land, and it could be dangerous sitting
under them as they fly overhead." -- RFC 1925
More information about the freebsd-security
mailing list