OpenBSD: Unique Kernels on each reboot

OpenBSD: A new feature added to the test snapshots of new versions of OpenBSD will create a single kernel whenever an OpenBSD user restarts or upgrades his computer.

This function is called KARL from the Kernel Address Randomized Link, or Random Kernel Address, and works by relinking the internal kernel files in random order to create a unique kernel binary blob every time.OpenBSD

At present, in stable versions of OpenBSD, the kernel uses a pre-set order to perform relinking and load internal files into the binary kernel. This results in the same kernel for all users.

OpenBSD with KARL and not ASLR

KARL was developed by Theo de Raadt, and works by creating a new binary kernel during installation, upgrading, and boot time. If the user boots, upgrades or restarts his machine, a new created kernel will replace the existing kernel and the operating system will create a new binary kernel to be used in the next boot / upgrade / restart.

KARL should not be confused with ASLR or Address Space Randomization, μια τεχνική που δίνει τυχαία διεύθυνση μνήμης (memory address) όταν εκτελείται μια εφαρμογή. Έτσι τα exploits δεν μπορούν να στοχεύσουν μια συγκεκριμένη memory that the attacker knows an application or the kernel is running on.

Instead, KARL creates kernel binaries with random internal structures, so that exploits cannot attack internal kernel functions, pointers, or . A technical explanation is available at the link below.

http://undeadly.org/cgi?action=article&sid=20170701170044&mode=expanded&count=9

This feature has been developed over the past two months

Work on this feature began in May and was first discussed in mid-June via OpenBSD technical mailing . KARL was recently added to snapshot versions of OpenBSD 6.1.

This new feature appears to be unique in OpenBSD, as we do not know anything similar about it Linux.

Linux has just added support for the Kernel Address Space Layout Randomization (KASLR), a function that makes the ASLR port in the kernel itself, loading the kernel to a random memory address.

This feature was enabled by default on Linux 4.12, which was released last week. The difference between the two is that KARL loads different kernel binaries in the same place, while KASLR loads the same kernel binary at random locations. Same goal, different paths.

As for , KARL is not supported, but Microsoft has been using KASLR for many years.

It should be noted that OpenBSD's new functionality appears to provide much more security than the solutions used by Microsoft and Linux.

Perhaps after several tests we see KARL in other operating systems as well.

iGuRu.gr The Best Technology Site in Greeceggns

Get the best viral stories straight into your inbox!















Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).