From owner-freebsd-hackers@freebsd.org  Wed Mar  8 15:52:09 2017
Return-Path: <owner-freebsd-hackers@freebsd.org>
Delivered-To: freebsd-hackers@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 00315D037CA;
 Wed,  8 Mar 2017 15:52:09 +0000 (UTC) (envelope-from des@des.no)
Received: from smtp.des.no (smtp.des.no [194.63.250.102])
 by mx1.freebsd.org (Postfix) with ESMTP id B493D1D86;
 Wed,  8 Mar 2017 15:52:08 +0000 (UTC) (envelope-from des@des.no)
Received: from desk.des.no (smtp.des.no [194.63.250.102])
 by smtp.des.no (Postfix) with ESMTP id 59DE010BA6;
 Wed,  8 Mar 2017 15:52:07 +0000 (UTC)
Received: by desk.des.no (Postfix, from userid 1001)
 id 714AA7026; Wed,  8 Mar 2017 16:52:08 +0100 (CET)
From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no>
To: grarpamp <grarpamp@gmail.com>
Cc: freebsd-security@freebsd.org, freebsd-hackers@freebsd.org,
 freebsd-questions@freebsd.org
Subject: Re: WikiLeaks CIA Exploits: FreeBSD References Within
References: <CAD2Ti28acbW+pGQR5UihECWvg9WduGmVzkVFug_2ZWRF2zyTBw@mail.gmail.com>
Date: Wed, 08 Mar 2017 16:52:08 +0100
In-Reply-To: <CAD2Ti28acbW+pGQR5UihECWvg9WduGmVzkVFug_2ZWRF2zyTBw@mail.gmail.com>
 (grarpamp@gmail.com's message of "Tue, 7 Mar 2017 15:29:07 -0500")
Message-ID: <86innjojfb.fsf@desk.des.no>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.1 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
 <freebsd-hackers.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-hackers>, 
 <mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers/>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
 <mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Mar 2017 15:52:09 -0000

grarpamp <grarpamp@gmail.com> writes:
> https://search.wikileaks.org/?q=3Dfreebsd
>
> Currently returns many pages similarly named...
>
> "Shell Code Database
> This page includes local links to a shellcode
> database discovered at shell-storm.org."

That doesn't indicate a vulnerability.  Shell code is what you use to
exploit a remote code execution vulnerability once you've found it.  It
usually needs to be tailored to the target operating system, sometimes
to the exact environment and to the application used to inject it, so it
makes sense that a shell code database would reference FreeBSD.

> [...] it makes sense to establish ongoing search and review of this
> dataset for any as yet unfixed exploits.

Note to anyone thinking of getting involved in this: depending on your
jurisdiction and employment situation, downloading material from the CIA
dump may be illegal and / or a firing offense.  Simply browsing it
online may or may not be safe; get legal advice before you do.  IANAL.

DES
--=20
Dag-Erling Sm=C3=B8rgrav - des@des.no