Skip to content

Security: orumin/nanos

Security

SECURITY.md

Security

Security is not binary. Software is not 'secure' or 'insecure'. It's more of a spectrum.

This document contains any pro-active measures we've enabled.

ASLR:

  • Stack Randomization

  • Heap Randomization

  • Library Randomization

  • Binary Randomization

Page Protections:

  • Stack Execution off by Default

  • Heap Execution off by Default

  • Null Page is Not Mapped

  • Stack Cookies/Canaries

  • Rodata no execute

  • Text no write

Other Considerations

  • Single Process

  • No Users

  • No Shell

To report security issues email security @ . We don't do PGP. (https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f)

There aren’t any published security advisories