Enabling ASLR to Prevent Fixed Address Attacks

Address space layout randomization (ASLR) is a security technology against buffer overflow. It randomizes the layout of linear areas such as heap, stack, and shared library mapping to make it difficult for attackers to predict target addresses and directly locate code, thereby preventing overflow attacks. ASLR applies to heaps, stacks, and memory mapping areas (mmap base addresses, shared libraries, and vdso pages).

To prevent fixed address attacks, you are advised to enable ASLR. To enable ASLR, run the following command:

1

echo 2 > /proc/sys/kernel/randomize_va_space