Apparently the stock Linux kernel has an ASLR implementation. It is controlled through the kernel.randomize_va_space sysctl variable. The values are supposedly thus (from here: http://www.win.tue.nl/~aeb/linux/hh/protection.html): 0 - don't use ASLR 1 - randomize base address for mmap'd areas 2 - ditto, and also randomize the "brk base address" (I assume that would refer to this? http://www.kernel.org/doc/man-pages/online/pages/man2/brk.2.html) Apparently it's inferior to the GrSec implementation in that a programmer can override it, but it looks better than nothing... Or so I'd think. How does it actually compare with the Windows 7 and GrSec implementations in practice?