Ask Question
Computers & TechnologyComputers & Technology
15 July, 19:27

The least-privilege principle can be used to effectively defend against the race condition attacks discussed in this chapter. Can we use the same principle to defeat buffer-overflow attacks? Why or why not? Namely, before executing the vulnerable function, we disable the root privilege; after the vulnerable function returns, we enable the privilege back.

+3
Answers (1)
  1. 15 July, 23:06
    0
    Answer and Explanation:

    I felt that we cannot actually overcome buffer-overflow attacks because it will really reduced the effect of the buffer-overflow and If we are to apply the least-privilege principle, that actually means that we do not have the root privilege when executing vulnerable function, which will make us not to get the root shell when attacking successfully and may lead to getting a normal shell meaning what we can attack will be limited.

    Even though we lose the privilege when executing the vulnerable function, and thus cannot get the root privilege when winning the attack, it can still do harm to the victim. Therefore when we write a bad file which consists of a extremely large quantity of meaningless and un - useful codes, into a buffer, it may make the stack full of meaningless and less important codes, leading to overwriting some area where important data is store. Although the buffer-overflow still succeeds, but we do not need root privilege when finishing the above steps which is why even if we use the principle, we still cannot defeat all conditions of buffer-overflow attacks.
Know the Answer?
Not Sure About the Answer?
Get an answer to your question ✅ “The least-privilege principle can be used to effectively defend against the race condition attacks discussed in this chapter. Can we use ...” in 📙 Computers & Technology if there is no answer or all answers are wrong, use a search bar and try to find the answer among similar questions.
Search for Other Answers
You Might be Interested in
The processor needs to compute the next PC after each instruction. Write a verilog module which computes the next PC. Be sure to include the B, and CBZ cases. You may use the output of the "Control" module.
Answers (1)
0x6a656c6c7966697368
Answers (1)
A technician has been asked to configure several computers with RAID. The customer wants data to be stored on two drives that are used to maximum capacity and does not care if a single drive fails, because data is backed up hourly.
Answers (1)
The equation a=f/m tell us acceleration will increase if
Answers (1)
In which area is composing for games similar to composing for movies A. royalties earned B. success of song-based soundtracks C. usage of audio software for mixing and editing D. spotting sessions
Answers (1)
New Questions in Computers & Technology
Explain briefly why you cannot expect to find a previous version of every file with which you work.
Answers (2)
Which type of multiplexing divides transmission opportunities into slots of 125 microseconds with position inside each slot reserved for device signal?
Answers (1)
Which option can be used to access more settings than are available in the background view
Answers (1)
If a document window has been split into two panes, how can you restore the window to a single pane? double-click the split bar. right-click the split bar and click remove split. drag the split bar to the bottom of the document.
Answers (1)
Which position most likely requires your Master's Degree for success A computer programmer B website designer C IT project manager D computer scientist
Answers (1)
Home » Computers & Technology » The least-privilege principle can be used to effectively defend against the race condition attacks discussed in this chapter.
Sign Up Forgot Password?