[$] When ELF notes reveal too much
The Linux kernel uses a number of hardening techniques to try to protectitself against compromise; one of those is kernel address-space layoutrandomization (KASLR). But randomization is of little benefit if thekernel spills the beans on where its code has ended up. As it happens, thekernel has been doing exactly that - since 2007, in a behavior thatpredates the addition of KASLR. Some changes are in theworks to close that hole, but it is illustrative of just how hard somesecrets are to keep.