Full Disclosure mailing list archives
Re: linux bugs (survival stories)?
From: Eduardo Tongson <propolice () gmail com>
Date: Tue, 12 Apr 2005 21:20:03 +0000
BUT i was woundering, to what extent adding these extra security measures are effective against the real attacks & bugs discovered in the kernel.They do almost nothing to guard against bugs discovered *in the kernel*, because all of them are addressing *userspace* bugs.
Stuff like for example circumventing noexec flags on mounted filesystems
still is trivial even with the latest and development versions of the
linux kernel
I don't know if you could even consider it that sad.
--
Eduardo Tongson
<pornadmin.net/~tongson>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- linux bugs (survival stories)? Bipin Gautam (Apr 11)
- Re: linux bugs (survival stories)? Valdis . Kletnieks (Apr 12)
- Re: linux bugs (survival stories)? Georgi Guninski (Apr 12)
- Re: linux bugs (survival stories)? dk (Apr 12)
- Re: linux bugs (survival stories)? Eduardo Tongson (Apr 12)
- Re: linux bugs (survival stories)? Valdis . Kletnieks (Apr 12)
- Re: linux bugs (survival stories)? Eduardo Tongson (Apr 12)
- Re: linux bugs (survival stories)? Joachim Schipper (Apr 12)
- Re: linux bugs (survival stories)? Valdis . Kletnieks (Apr 12)
- Re: linux bugs (survival stories)? Eduardo Tongson (Apr 13)
- Re: linux bugs (survival stories)? Valdis . Kletnieks (Apr 12)
- <Possible follow-ups>
- Re: linux bugs (survival stories)? pageexec (Apr 12)
- Re: linux bugs (survival stories)? Valdis . Kletnieks (Apr 12)
- Re: linux bugs (survival stories)? pageexec (Apr 13)
- Re: linux bugs (survival stories)? Valdis . Kletnieks (Apr 13)
- Re: linux bugs (survival stories)? pageexec (Apr 13)
- Re: linux bugs (survival stories)? Valdis . Kletnieks (Apr 12)