Re: DefCon lecture BSD Kern Vulns

-- Forwarded message -- From: "rollingbits (Lucas)" Date: Aug 9, 2017 9:36 PM Subject: Re: DefCon lecture BSD Kern Vulns To: "Dag-Erling Smørgrav" Cc: On Jul 31, 2017 12:50 PM, "Dag-Erling Smørgrav" wrote: Michelle Sullivan writes: > Peop

Re: DefCon lecture BSD Kern Vulns

If one are too fix all of what Ilja van Sprundel pointed out here we need too put aside difference and work along side with each other, the newbie and the professor needs too talk the same language. It should't be this way that a bug that has been adressed two years ago get's no attention at all, a

Re: DefCon lecture BSD Kern Vulns

On Tue, 8 Aug 2017, Dewayne Geraghty wrote: > > Indeed, there are times when it's best to say nothing :) ___ freebsd-security@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "free

Re: DefCon lecture BSD Kern Vulns

___ freebsd-security@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"

Re[4]: DefCon lecture BSD Kern Vulns

>Sunday, August 6, 2017 10:17 PM UTC from Justin Coffman via freebsd-security >: > >> >Monday, July 31, 2017 4:20 PM UTC from Dag-Erling Smørgrav >> < d...@des.no >: >> > >> >Big Lebowski < spankthes...@gmail.com > writes: >> >> Dag-Erling Smørgrav < d...@des.no > writes: >> >> > There are d

Re: DefCon lecture BSD Kern Vulns

Mail Lists wrote: Monday, July 31, 2017 4:20 PM UTC from Dag-Erling Smørgrav : Big Lebowski mailto:spankthes...@gmail.com>> writes: > Dag-Erling Smørgrav mailto:d...@des.no>> writes: > > There are decades of history here of which you are clearly unaware. > > You ma

RE: Re[2]: DefCon lecture BSD Kern Vulns

> >Monday, July 31, 2017 4:20 PM UTC from Dag-Erling Smørgrav > : > > > >Big Lebowski < spankthes...@gmail.com > writes: > >> Dag-Erling Smørgrav < d...@des.no > writes: > >> > There are decades of history here of which you are clearly unaware. > >> > You may have the best of intentions, but nothin

Re[2]: DefCon lecture BSD Kern Vulns

>Monday, July 31, 2017 4:20 PM UTC from Dag-Erling Smørgrav : > >Big Lebowski < spankthes...@gmail.com > writes: >> Dag-Erling Smørgrav < d...@des.no > writes: >> > There are decades of history here of which you are clearly unaware. >> > You may have the best of intentions, but nothing good will

Re: DefCon lecture BSD Kern Vulns

Dag-Erling Smørgrav wrote: Michelle Sullivan writes: People should talk between, and maybe people should put security and co-operation before pride and empires... [...] There are decades of history here of which you are clearly unaware. Your may have the best of intentions, but nothing good wi

Re: DefCon lecture BSD Kern Vulns

Big Lebowski writes: > Dag-Erling Smørgrav writes: > > There are decades of history here of which you are clearly unaware. > > You may have the best of intentions, but nothing good will come of > > raising this topic here and now. Just drop it. > Des, please, stop doing that. You're greatest exa

Re: DefCon lecture BSD Kern Vulns

> > There are decades of history here of which you are clearly unaware. > Your may have the best of intentions, but nothing good will come of > raising this topic here and now. Just drop it. > > DES > Des, please, stop doing that. You're greatest example of cant-be-done about almost anything anyo

Re: DefCon lecture BSD Kern Vulns

Michelle Sullivan writes: > People should talk between, and maybe people should put security and > co-operation before pride and empires... [...] There are decades of history here of which you are clearly unaware. Your may have the best of intentions, but nothing good will come of raising this to

Re: DefCon lecture BSD Kern Vulns

Dag-Erling Smørgrav wrote: Dirk Engling writes: have those findings officially been reported? Is someone working on them? Speaking as a secteam member but not on behalf of so@, we are aware of these issues but did not get sufficient advance notice to fix them in time for DefCon. DES After rea

Re: DefCon lecture BSD Kern Vulns

Dirk Engling writes: > have those findings officially been reported? Is someone working on > them? Speaking as a secteam member but not on behalf of so@, we are aware of these issues but did not get sufficient advance notice to fix them in time for DefCon. DES -- Dag-Erling Smørgrav - d...@des.

Re: DefCon lecture BSD Kern Vulns

On 07/28/2017 16:21, Luke Crooks wrote: I was sent a link earlier, seems to work... https://www.pdf-archive.com/2017/07/28/defcon-25-ilja-van-sprundel-bsd-kern-vulns/defcon-25-ilja-van-sprundel-bsd-kern-vulns.pdf Some great work and an enjoyable read. On 28 Jul 2017 21:02, "Yonas Yanfa"

Re: DefCon lecture BSD Kern Vulns

I was sent a link earlier, seems to work... https://www.pdf-archive.com/2017/07/28/defcon-25-ilja-van-sprundel-bsd-kern-vulns/defcon-25-ilja-van-sprundel-bsd-kern-vulns.pdf Some great work and an enjoyable read. On 28 Jul 2017 21:02, "Yonas Yanfa" wrote: > On 07/28/2017 08:08, Dirk Engling wro

Re: DefCon lecture BSD Kern Vulns

On 07/28/2017 08:08, Dirk Engling wrote: Out of curiosity: have those findings officially been reported? Is someone working on them? https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf If not, shall I extract them? That link d

Re: DefCon lecture BSD Kern Vulns

I haven't read the paper yet, and I'm surely not up on things enough to know what I'm looking at, but are these 0-days? If so, do they store them up so they can present at defcon? --Joey > Out of curiosity: > > have those findings officially been reported? Is someone working on them? > > https://

DefCon lecture BSD Kern Vulns

Out of curiosity: have those findings officially been reported? Is someone working on them? https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf If not, shall I extract them? Maybe we should start an "audit a subsystem" week ;)