Is there a way to securely wipe the memory used by a Golang program before it closes?

blov · · 450 次点击    
这是一个分享于 的资源,其中的信息可能已经有所发展或是发生改变。
<hr/>**评论:**<br/><br/>ctesibius: <pre><p>Realistically, no, not as part of the Golang environment. An attacker could do &#34;kill -9&#34; or the equivalent, circumventing any program termination actions. What threat model are you considering? I.e. who do you want to defend against - local unprivileged user, local root, someone who has physical access but no login, or something else?</p></pre>Rivermind: <pre><p>This can&#39;t be done &#34;securely&#34; even in C. The problem extends beyond the language to the machine that you are executing on.</p> <p><a href="http://www.daemonology.net/blog/2014-09-06-zeroing-buffers-is-insufficient.html">http://www.daemonology.net/blog/2014-09-06-zeroing-buffers-is-insufficient.html</a></p></pre>heptara: <pre><p>Wouldn&#39;t you have to erase the swap file as well?</p></pre>mekanikal_keyboard: <pre><p>what you <em>can</em> do is make sure process memory is not swapped out or virtualized to persistent storage. <code>vault</code> does this. </p></pre>

入群交流(和以上内容无关):加入Go大咖交流群,或添加微信:liuxiaoyan-s 备注:入群;或加QQ群:692541889

450 次点击  
加入收藏 微博
0 回复
暂无回复
添加一条新回复 (您需要 登录 后才能回复 没有账号 ?)
  • 请尽量让自己的回复能够对别人有帮助
  • 支持 Markdown 格式, **粗体**、~~删除线~~、`单行代码`
  • 支持 @ 本站用户;支持表情(输入 : 提示),见 Emoji cheat sheet
  • 图片支持拖拽、截图粘贴等方式上传