It seems XFree people disagree...
Marc Aurele La France: Contrary to what too many security pundits think,
limiting root's power doesn't solve anything. Like bugs, security issues
will forever be uncovered, whether they be in setuid applications like an X
server or in a kernel itself. The tri
A researcher of the french NSA discovered a scary vulnerability in modern x86
cpus and chipsets that expose the kernel to direct tampering.
http://www.securityfocus.com/print/columnists/402
The problem is that a feature called System Management Mode could be used to
bypass the kernel and execut
On Tuesday 02 May 2006 16:22, Ted Unangst wrote:
> > But it seems that this feature was disabled just before shipping 3.8
> > because too many ports were instable. 3.9 should come with it.
>
> how does it seem this feature was disabled? look at cvs log. nothing
> was disabled.
Disabled = Not en
Dave, I guess the interviewer is talking about this email by Theo:
http://marc.theaimsgroup.com/?l=openbsd-misc&m=112475373731469&w=2
where he states:
- When you free an object that is >= 1 page in size, it is actually
returned to the system. Attempting to read or write to it after
you fre
Quoting from: http://www.onlamp.com/lpt/a/6384
The biggest drawback of svnd is its lack of security in the general use case.
It is vulnerable to an offline dictionary attack. That is, you can generate a
database mapping known ciphertext blocks on the disk back into pass phrases
that can be acc
http://www.osnews.com/comment.php?news_id=12886
for those developers who know how to write drivers...
> I'm surprised that noone have posted any reports on the OpenCON held in
> Venice, Italy this weekend. I would like to thank everyone, and
> especially the staff and developers for a great and well-arranged
> conference. It was well worth the long journey from Norway!
Something was posted on
> do you think the archives are poo too, or do you plan to read them?
I have already read the archives. You keep saying, there is no plan to import
it. However you did created a patch for OpenBSD 3.2, so maybe you or someone
else could write (for the archives) *why* there isn't any plan to impor
> I want a raid model that acts as if it is a regular scsi drive, ie.
> sdN. Like our hardware raid controllers work. Right now what we
> have in the tree is poo, and vinum is just as much poo too.
Is there any hope to see the "live network backup" that NetBSD's developer
"der Mouse" presented
> Can you enlighten me how that would improve security?
I'm not saying that rings improve security. In fact I'm asking *if* there is
any plan to use them to improve security.
I think that OpenBSD (and Linux and Windows) uses ring 0 for kernel and ring 3
for userland. I was asking if they planne
Is there any plan to use x86 cpus rings (0..3) to improve OpenBSD security?
Hi,
did anyone played with a notebook powered by an AMD Turion ?
http://code.google.com/summerofcode.html
Where is OpenBSD ?
Hi,
I'm going to give away some old hard disks and I'm planning to
delete/overwrite all the data on them. Is there any tool to make this
automagically ?
Thanks.
14 matches
Mail list logo
