ASLR is disabled in Oracle Linux 7 system - kernel.randomize_va_space = 0
Applies to:
Oracle Cloud Infrastructure - Version N/A and later
Linux OS - Version Oracle Linux 7.0 and later
Oracle Compute Cloud Service - Version N/A and later
Information in this document applies to any platform.
Goal
In a specific Oracle Linux 7 OCI instance, the parameter kernel.randomize_va_space is set to 0, disabling ASLR.
Is this the standard or recommended setting?
Solution
In standard Oracle Linux 7 OCI instances, ASLR is enabled by default and the corresponding kernel parameter is set to kernel.randomize_va_space = 2
From the point of view of the Linux OS alone, ASLR should be enabled as it provides additional security by randomizing the memory addresses of memory segments used by processes.