From owner-freebsd-security@FreeBSD.ORG  Wed Jun 19 23:57:04 2013
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by hub.freebsd.org (Postfix) with ESMTP id 7C009D18
 for <freebsd-security@freebsd.org>; Wed, 19 Jun 2013 23:57:04 +0000 (UTC)
 (envelope-from tam.sergio@gmail.com)
Received: from mail-ie0-x233.google.com (mail-ie0-x233.google.com
 [IPv6:2607:f8b0:4001:c03::233])
 by mx1.freebsd.org (Postfix) with ESMTP id 5311E184A
 for <freebsd-security@freebsd.org>; Wed, 19 Jun 2013 23:57:04 +0000 (UTC)
Received: by mail-ie0-f179.google.com with SMTP id c10so14837760ieb.38
 for <freebsd-security@freebsd.org>; Wed, 19 Jun 2013 16:57:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:in-reply-to:references:date:message-id:subject:from:to
 :content-type; bh=SFTK4+CoRsQwGLLuU5YKk76GOHtHTs66fpldN8SC09I=;
 b=eAP7IWi8GzQW/wI4APmuh6uHjQxuv3wqE4Bc/jwvIJj1mjVb6RrMv4ZgvEkkmh69LG
 0sM6StzMKWZeasy8VKw0za7qxapC5CIyICGEqvM3QVOHjM7TmOsolPvFa7fuzccadFgP
 7hmfPdx/9PXCa3ZAPPpszK68KzUOorOSRZOXsVeD9L/h8hGwzxfZuc76Lv7PlLr05ed0
 FA6hjVJB/O0fus1ySW6kNaX8b66RegWUKOo/+f6avjYhAT4bvvlQjEFs5Jg34W23WH5Q
 /g73socuW+rNipJLrNTJoEKWZrrnll3Mmk75q3rhkhSP3p8VMVbJEyVW6ogJ7nTjN7M3
 YHgA==
MIME-Version: 1.0
X-Received: by 10.43.148.71 with SMTP id kf7mr2140265icc.42.1371686224039;
 Wed, 19 Jun 2013 16:57:04 -0700 (PDT)
Received: by 10.64.46.197 with HTTP; Wed, 19 Jun 2013 16:57:03 -0700 (PDT)
In-Reply-To: <CANyuAwgZkt6oF0MSa1nOa1fJ1CU=ctUxSJkpQgZUfPqbZ+R49A@mail.gmail.com>
References: <CANyuAwgZkt6oF0MSa1nOa1fJ1CU=ctUxSJkpQgZUfPqbZ+R49A@mail.gmail.com>
Date: Wed, 19 Jun 2013 18:57:03 -0500
Message-ID: <CA+au=tepHW_XROXx3mO+5MHaLcmgGAJDa1rSzcfzk1FKaNzvKg@mail.gmail.com>
Subject: Re: Happy Birthday FreeBSD! Now you are 20 years old and your
 security is the same as 20 years ago... :)
From: Sergio Tam <tam.sergio@gmail.com>
To: freebsd-security@freebsd.org
Content-Type: text/plain; charset=UTF-8
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Jun 2013 23:57:04 -0000

Hello Hunger


2013/6/19 Hunger <hunger@hunger.hu>:
> $ uname -a
> FreeBSD fbsd91x64 9.1-RELEASE FreeBSD 9.1-RELEASE #0 r243825: Tue Dec
> 4 09:23:10 UTC 2012
> root@farrell.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC  amd64
> $ id
> uid=1001(hunger) gid=1002(hunger) groups=1002(hunger)
> $ gcc fbsd9lul.c -o fbsd9lul
> $ ./fbsd9lul
> FreeBSD 9.{0,1} mmap/ptrace exploit
> by Hunger <fbsd9lul@hunger.hu>
> # id
> uid=0(root) gid=0(wheel) egid=1002(hunger) groups=1002(hunger)
> #
>

I am new can you clarify a question?
I have not installed nmap. Its FreBSD insecure?
Can you do the same?
can you exploit freebsd without nmap?

Regards.