Ask Question
Computers & TechnologyComputers & Technology
15 July, 19:27

The least-privilege principle can be used to effectively defend against the race condition attacks discussed in this chapter. Can we use the same principle to defeat buffer-overflow attacks? Why or why not? Namely, before executing the vulnerable function, we disable the root privilege; after the vulnerable function returns, we enable the privilege back.

+3
Answers (1)
  1. 15 July, 23:06
    0
    Answer and Explanation:

    I felt that we cannot actually overcome buffer-overflow attacks because it will really reduced the effect of the buffer-overflow and If we are to apply the least-privilege principle, that actually means that we do not have the root privilege when executing vulnerable function, which will make us not to get the root shell when attacking successfully and may lead to getting a normal shell meaning what we can attack will be limited.

    Even though we lose the privilege when executing the vulnerable function, and thus cannot get the root privilege when winning the attack, it can still do harm to the victim. Therefore when we write a bad file which consists of a extremely large quantity of meaningless and un - useful codes, into a buffer, it may make the stack full of meaningless and less important codes, leading to overwriting some area where important data is store. Although the buffer-overflow still succeeds, but we do not need root privilege when finishing the above steps which is why even if we use the principle, we still cannot defeat all conditions of buffer-overflow attacks.
Know the Answer?
Not Sure About the Answer?
Get an answer to your question ✅ “The least-privilege principle can be used to effectively defend against the race condition attacks discussed in this chapter. Can we use ...” in 📙 Computers & Technology if there is no answer or all answers are wrong, use a search bar and try to find the answer among similar questions.
Search for Other Answers
You Might be Interested in
1. You notice that your computer is getting slower each day. You have terminated unneeded programs, disabled unneeded services, and have recently defragmented the disks. Your computer has plenty of memory but it still seems slow.
Answers (2)
Describe how one might select an appropriate QoS method for a particular SAN situation.
Answers (1)
What can you do to keep safe when using a ladder?
Answers (1)
Preserving confidentiality, integrity, and availability of data is a restatement of the concern over interruption, modification, and fabrication.
Answers (1)
You are troubleshooting a network issue a user is having. after having changed his network adapter to static addressing, he can no longer reach the internet. however, the machine resolves internet names to ip addresses.
Answers (1)
New Questions in Computers & Technology
g Write a Racket function (process lst1 lst2) that processes the corresponding elements of the two lists and returns a list.
Answers (1)
A Windows Live ID is used to make a video of a presentation. e-mail a presentation. broadcast a slide show. save as a PDF of the presentation.
Answers (1)
When you create a new folder, the default name for the folder is blank folder. true or false?
Answers (1)
How does the theodolite work?
Answers (1)
Which statement must be included in a program in order touse a deque container? a. #include vector b. #include c. #include container d. #include deque
Answers (1)
Home » Computers & Technology » The least-privilege principle can be used to effectively defend against the race condition attacks discussed in this chapter.
Sign Up Forgot Password?