Star Cambridge Researcher Breaks Open/NetBSD Systrace
Linked by Thom Holwerda on Thu 9th Aug 2007 17:02 UTC, submitted by Joe User
Privacy, Security, Encryption University of Cambridge researcher Robert Watson has published a paper at the First USENIX Workshop On Offensive Technology in which he describes serious vulnerabilities in OpenBSD's Systrace, Sudo, Sysjail, the TIS GSWTK framework, and CerbNG. The technique is also effective against many commercially available anti-virus systems. His slides include sample exploit code that bypasses access control, virtualization, and intrusion detection in under 20 lines of C code consisting solely of memcpy() and fork(). Sysjail has now withdrawn their software, recommending against any use, and NetBSD has disabled Systrace by default in their upcoming release.
E-mail Print r 1   12 Comment(s) http://osne.ws/e7q
Thread beginning with comment 262031
To read all comments associated with this story, please click here.
ouch...
by Flatland_Spider on Thu 9th Aug 2007 18:16 UTC
Flatland_Spider
Member since:
2006-09-01

Rough day for the OpenNetBSD camps.

What's the saying, "What doesn't kill you makes you stronger?"

Reply Bookmark Score: 4

RE: ouch...
by SEJeff on Thu 9th Aug 2007 19:40 in reply to "ouch..."
SEJeff Member since:
2005-11-05

This would only be rough if there was a worm of somesort mass turning OpenBSD boxes into bots. Since this is very unlikely, it isn't a bad day.

Those guys live for finding new ways to break code and are probably pretty excited about this.

Reply Parent Bookmark Score: 5

RE[2]: ouch...
by Flatland_Spider on Thu 9th Aug 2007 20:51 in reply to "ouch..."
Flatland_Spider Member since:
2006-09-01

That's true. It could be worse then a little dirt on the "Secure by Default" slogan and fodder for the OS fanboy cannons. ;)

Reply Parent Bookmark Score: 0