Re: Backport of the integer overflow in the brk system call

To: debian-devel@lists.debian.org
Cc: Russell Coker <russell@coker.com.au>
Subject: Re: Backport of the integer overflow in the brk system call
From: Tom <tb.31123.nospam@comcast.net>
Date: Thu, 4 Dec 2003 15:29:02 -0800
Message-id: <[🔎] 20031204232902.GA4604@comcast.net>
Mail-followup-to: debian-devel@lists.debian.org, Russell Coker <russell@coker.com.au>
In-reply-to: <[🔎] 20031204231348.GA582@dijkstra.csh.rit.edu>
References: <[🔎] 3FCBCF99.3000907@sentinel.dk> <[🔎] E1AR6Vn-0001YY-Vx@mid.downhill.at.eu.org> <[🔎] 20031202232021.GA32333@daedalus.andrew.net.au> <[🔎] 200312031117.19034.russell@coker.com.au> <[🔎] 20031203005423.GA1132@daedalus.andrew.net.au> <[🔎] 20031203011922.GA2828@comcast.net> <[🔎] 20031204192354.GP582@dijkstra.csh.rit.edu> <[🔎] 20031204195526.GB1456@comcast.net> <[🔎] 20031204231348.GA582@dijkstra.csh.rit.edu>

On Thu, Dec 04, 2003 at 06:13:49PM -0500, Matt Zimmerman wrote:
> 
> Not really; he just has to set things up ahead of time.  This is like
> claiming the attacker has to be present in order to sniff your password from
> a telnet session (he doesn't; he just has to have been around at any time
> before then in order to set up a sniffer).

That's totally true.  It's not the way this attack happened though.
All I know is it's a layer and experts say layered defense is best.
I still think it would discourage the cracker.  A lot of the "open a 
netcat over the exposed pipe" tricks wouldn't work iff the smartcard 
auth stack wasn't compromised -- the netcat couldn't get auth'd, and the 
server wouldn't buy it.  The problem now is a pipe is a pipe.

Just rambling... I'm sure there's tons of holes in what I just said.

Reply to:

Follow-Ups:
- Re: Backport of the integer overflow in the brk system call
  - From: Colin Watson <cjwatson@debian.org>

References:
- Backport of the integer overflow in the brk system call
  - From: Frederik Dannemare <tux@sentinel.dk>
- Re: Backport of the integer overflow in the brk system call
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>
- Re: Backport of the integer overflow in the brk system call
  - From: Andrew Pollock <debian-lists@andrew.net.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Russell Coker <russell@coker.com.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Andrew Pollock <debian-devel@andrew.net.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: Backport of the integer overflow in the brk system call
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Backport of the integer overflow in the brk system call
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: Backport of the integer overflow in the brk system call
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: Debian packages and freedesktop.org (Gnome, KDE, etc) menu entries
Next by Date: Building a distribution from source?
Previous by thread: Re: Backport of the integer overflow in the brk system call
Next by thread: Re: Backport of the integer overflow in the brk system call
Index(es):
- Date
- Thread