Re: Debian Server Compromise -- A Fire Drill ??

To: Isaac To <kkto@csis.hku.hk>
Cc: debian-user@lists.debian.org
Subject: Re: Debian Server Compromise -- A Fire Drill ??
From: John Hasler <john@dhh.gt.org>
Date: Thu, 04 Dec 2003 10:15:12 -0600
Message-id: <[🔎] 87wu9cftkf.fsf@toncho.dhh.gt.org>
In-reply-to: <[🔎] 7iad684q1g.fsf@enark.csis.hku.hk> (Isaac To's message of "Thu, 04 Dec 2003 22:26:51 +0800")
References: <[🔎] 5.2.1.1.0.20031204062446.02d7ec90@mail.gain.com> <[🔎] 7iad684q1g.fsf@enark.csis.hku.hk>

Isaac writes:
> And then, due to the kernel bug, the user can write into arbitrary
> location in the kernel, do whatever he wants.

It's rather more complicated than that.  The user reportedly must do some
pretty subtle stuff to get root via the brk() bug.  That's why the kernel
developers thought it was just an ordinary bug: they could see no way to
exploit it.
-- 
John Hasler
john@dhh.gt.org (John Hasler)
Dancing Horse Hill
Elmwood, WI

Reply to:

Follow-Ups:
- Re: Debian Server Compromise -- A Fire Drill ??
  - From: Tom <tb.31123.nospam@comcast.net>

References:
- Debian Server Compromise -- A Fire Drill ??
  - From: Dave <dmq@gci-net.com>
- Re: Debian Server Compromise -- A Fire Drill ??
  - From: Isaac To <kkto@csis.hku.hk>

Prev by Date: Re: No updates to unstable since the security breach?
Next by Date: Re: base64 translation
Previous by thread: Re: Debian Server Compromise -- A Fire Drill ??
Next by thread: Re: Debian Server Compromise -- A Fire Drill ??
Index(es):
- Date
- Thread