Date: Mon, 12 Jul 1999 16:58:57 +0800 From: Peter Wemm <peter@netplex.com.au> To: Darren Reed <avalon@coombs.anu.edu.au> Cc: des@flood.ping.uio.no (Dag-Erling Smorgrav), security@FreeBSD.ORG Subject: Re: Module magic Message-ID: <19990712085857.2B14C8A@overcee.netplex.com.au> In-Reply-To: Your message of "Mon, 12 Jul 1999 17:41:30 %2B1000." <199907120741.RAA08815@cheops.anu.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
Darren Reed wrote: > In some mail from Dag-Erling Smorgrav, sie said: > > > > Thought this'd be of interest to this list: > > > > http://thc.pimmel.com/files/thc/bsdkern.html > > So what ? > > Nothing in that document is "new" although it might be the > first time it's been documented for script-kiddies. Yeah, the main worrying thing about it is the hard coding of internal data structures and bypassing of proper interfaces. I'm half thinking about doing a couple of arbitary rearrangements of some internal (opaque) data structures to make their life a bit more exciting. I'd rather a box panic and burn if a script kiddie gets in and tries to use some of these ``techniques'' than have it run whatever they like undetected. This will be totally harmless to the existing modules since the data structures are not used outside kern_*.c. > Darren Cheers, -Peter To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990712085857.2B14C8A>