Date: Wed, 22 Jul 1998 02:28:10 -0400 (EDT) From: Snob Art Genre <benedict@echonyc.com> To: Brett Glass <brett@lariat.org> Cc: Jim Shankland <jas@flyingfox.com>, ahd@kew.com, leec@adam.adonai.net, security@FreeBSD.ORG Subject: Re: hacked and don't know why Message-ID: <Pine.GSO.4.00.9807220227001.4886-100000@echonyc.com> In-Reply-To: <199807220613.AAA26581@lariat.lariat.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 22 Jul 1998, Brett Glass wrote: > The symptoms aren't hard to understand. As I found out when we > were hit by the same hack, buffer overflow exploits also > hose memory.... The disk cache, kernel data, possibly even page tables > can be corrupted. Nothing's safe. If you do anything to your file > system before rebooting, you can wind up with corrupted directories > and worse. This happened to us. This doesn't sound correct. Buffer overflows can give you unauthorized access to user memory, but shouldn't give you access to kernel memory at all. Otherwise running "crashme" as root would have more effect than it does (none). Ben "You have your mind on computers, it seems." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.4.00.9807220227001.4886-100000>