-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
[EMAIL PROTECTED] wrote: > On Tue, 25 Jan 2005 14:56:13 EST, John Richard Moser said: > > >>This puts pressure on the attacker; he has to find a bug, write an >>exploit, and find an opportunity to use it before a patch is written and >>applied to fix the exploit. If say 80% of exploits are suddenly >>non-exploitable, then he's left with mostly very short windows that are >>far and few, and thus may be beyond his level of UNION(task->skill, >>task->luck) in many cases. > > > Correct. > > > >>If you can circumvent protection A by simply using attack B* to disable >>protection A to do more interesting attack A*, then protection A is >>smoke and mirrors. > > > You however missed an important case here. If attack B is outside > UNTION(task->skill, task->luck) protection A is *NOT* smoke-and-mirrors. > > And for the *vast* majority of attackers, if they have a canned exploit for > A and it doesn't work, they'll be stuck because B is outside their ability. Yes, true; but someone wrote that canned exploit for them, so the actual exploit writers will just adapt. Those attackers I don't think write their own exploits normally :) - -- All content of all messages exchanged herein are left in the Public Domain, unless otherwise explicitly stated. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFB9rMqhDd4aOud5P8RAgXBAJ9vOzRSZUsxmFOo9W7fROhfq1IBvgCcCINx gTiTNm44vp/hlygaPTdy9UM= =tDcw -----END PGP SIGNATURE----- - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
