Re: Debian Server Compromise -- A Fire Drill ??

To: debian-user@lists.debian.org
Subject: Re: Debian Server Compromise -- A Fire Drill ??
From: Dave <dmq@gci-net.com>
Date: Thu, 04 Dec 2003 11:17:32 -0700
Message-id: <[🔎] 5.2.1.1.0.20031204111521.02d7ec90@mail.gain.com>

On Thu, 04 Dec 2003 18:00:18 +0100, Tom <tb.31123.nospam@comcast.net> wrote:

>On Thu, Dec 04, 2003 at 10:15:12AM -0600, John Hasler wrote:
>
>> ...  That's why the kernel
>> developers thought it was just an ordinary bug: they could see no way to
>> exploit it.
>
>That statement is somewhat disconcerting.  The hypothesis is that many
>eyes detect secure bugs, and here is clear case evidence contradicting
>that hypothesis.

There is no contradiction. Many eyes detect most security problems, butnot all. This is certainly better than just a few eyes with access toproprietary code.


>One must assume there are more bugs in this class.

That is my assumption. The only thing that would give me confidence thatthere are no holes would be a common process for connecting raw input toprivileged routines -- a process which is so simple that everyone can seeit is robust. Such a process exists to isolate different privilege levelsin the instruction set of a microprocessor. It seems like somethingsimilar could be done to isolate routines that run with root privilege.


--Dave

Reply to:

Follow-Ups:
- Re: Debian Server Compromise -- A Fire Drill ??
  - From: Terry Hancock <hancock@anansispaceworks.com>
- Re: Debian Server Compromise -- A Fire Drill ??
  - From: Colin Watson <cjwatson@debian.org>

Prev by Date: Re: Recovery status?
Next by Date: Re: Successful thesis defense
Previous by thread: Re: Debian Server Compromise -- A Fire Drill ??
Next by thread: Re: Debian Server Compromise -- A Fire Drill ??
Index(es):
- Date
- Thread