ASLR is disabled in Oracle Linux 7 system - kernel.randomize_va_space = 0
Applies to:
Oracle Cloud Infrastructure - Version N/A and later
Linux OS - Version Oracle Linux 7.0 and later
Oracle Compute Cloud Service - Version N/A and later
Information in this document applies to any platform.
Goal
In a specific Oracle Linux 7 OCI instance, the parameter kernel.randomize_va_space is set to 0, disabling ASLR.
Is this the standard or recommended setting?
Solution
In standard Oracle Linux 7 OCI instances, ASLR is enabled by default and the corresponding kernel parameter is set to kernel.randomize_va_space = 2
From the point of view of the Linux OS alone, ASLR should be enabled as it provides additional security by randomizing the memory addresses of memory segments used by processes.
Tagged:
0