Stories
Slash Boxes
Comments
typodupeerror delete not in
  • Preferences

+-   OpenBSD's Systrace broken by Cambridge researcher-> on Wednesday August 08 2007, @02:40PM Anonymous Coward

Submitted by Anonymous Coward on Wednesday August 08 2007, @02:40PM
security
An anonymous reader writes "University of Cambridge researcher Robert Watson has published a paper at the First USENIX Workshop On Offensive Technology (WOOT07) in which he describes serious vulnerabilities in OpenBSD's Systrace, Sudo, Sysjail, the TIS GSWTK framework, and CerbNG, and that the technique is also effective against many commercially available anti-virus systems. His slides include sample exploit code that bypasses access control, virtualization, and intrusion detection in under 20 lines of C code consisting solely of memcpy() and fork(). Sysjail has now withdrawn their software recommending against any use, and NetBSD has disabled Systrace by default in their upcoming release."
Link to Original Source
submission
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

OpenBSD's Systrace broken by Cambridge researcher 0 Comments More /

 Full
 Abbreviated
 Hidden
More
Loading... please wait.
Search
I've run DOOM more in the last few days than I have the last few months. I just love debugging ;-) (Linus Torvalds)

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.