Enabling ASLR

Address space layout randomization (ASLR) randomly arranges the addresses that a program uses. To prevent a security attack, ASLR randomizes the address space positions of key parts of data areas such as stack, heap, and library positions.

It is recommended to enable ASLR as a good security precaution.

The following table lists the ASLR supported platforms for iProcess Engine.

Platform	Minimum OS Version (ASLR supported)	OS-Level Setting
Linux		`cat /proc/sys/kernel/randomize_va_space` OR `sysctl -a --pattern randomize` `sudo sysctl -w kernel.randomize_va_space=2`
Windows	Windows 10 version 1709 Windows Server 2019	Windows 10 version 1709 and later; Windows Server 2019 WDEG settings: Start > Windows Security > App & Browser Control > Exploit Protection Settings > Mandatory ASLR (Off) > Bottom-up ASLR (ON) > High-entropy ASLR ( ON) For old versions: Install EMET

Platform

Minimum OS Version

(ASLR supported)

OS-Level Setting

Linux

cat /proc/sys/kernel/randomize_va_space

sysctl -a --pattern randomize

sudo sysctl -w kernel.randomize_va_space=2

Windows

Windows 10 version 1709 Windows Server 2019

Windows 10 version 1709 and later; Windows Server 2019

WDEG settings: Start > Windows Security > App & Browser Control > Exploit Protection Settings > Mandatory ASLR (Off) > Bottom-up ASLR (ON) > High-entropy ASLR ( ON)

For old versions:

Install EMET

Did you find this helpful?

Yes No