After a drunken design session, the OpenBSD group has come out with some countermeasures that should prevent buffer overflows. All of the stuff they’re doing could be implemented in any OS, and does look like it should work. Given that most of the major Internet attacks since the Morris worm have been based on buffer overflows, needless to say this is huge.