FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Gentoo > Gentoo Hardened

 
 
LinkBack Thread Tools
 
Old 02-11-2008, 07:38 PM
Ned Ludd
 
Default latest kernel exploit patch for vmsplice coming?

On Mon, 2008-02-11 at 21:45 +0200, Petteri Rty wrote:
> Ned Ludd kirjoitti:
> > On Sun, 2008-02-10 at 23:41 +0200, pageexec@freemail.hu wrote:
> >
> > More FYI..
> > Hardened is nearly dead in respects to the
> > hardened-profile/hardened-toolchain/hardened-kernel.
> > It does not have to die but we are in a bit of a catch-22.
> > I'm the last dev really watching over those things. Everybody else has
> > retired and moved on in life. I'm starting to do the same. Weekend and
> > evening hobbies of other interest are starting to take priority. So the
> > catch-22 is that hardened needs more devs+proxies and or to be
> > re-evaluated.. The kicker is that I don't really have the spare time to
> > mentor new people. So... Any of you that want to help this project
> > continue. Please stop by #gentoo-hardened on freenode and offer whatever
> > help you can that fit within your skill traits (self motivated ppl++).
> >
> >
>
> Finding mentors should not hold up things. Please contact recruiters if
> you need someone to track down mentors for you.


Thanks very much for this key offering of help. Right now I've filed one
bug for Natanael Copa. 209669 (He's been very helpful over the years and
has recently expressed an interest in becoming a spam target.)

Next on my list would be try to talk Kerin.Miller going from staff to
dev status so he can help with the kernels w/o having to proxy via me.

Lots of people showed up today in #gentoo-hardened offering help. So
many in fact that it's hard to keep up and tell all the people where we
could use the help. But I'll say it again for those that failed to
read/understand what I said the first time. (self motivated++) that
means. If you can think of something that you think could use
improvements then don't wait around for me/others to say it's a good
idea. Just do it. And submit it..

----
PS: For all of you that have been waiting for a fixed vmsplice kernel to
hit the tree. Well you are in luck. Kerin put his patchset together and
I just pushed it to the tree about 30mins ago. So for those of you that
want to help but don't know where to start. I'd say. Go test the
newest .23 kernel in the tree and report feedback to Kerin.

Changes: https://bugs.gentoo.org/207393

* Bump to genpatches-base-2.6.23-9
* Ported grsecurity-2.1.11-2.6.23.14-200801231800 to 2.6.23.15
* Disables COMPAT_VDSO in x86/defconfig
* Removes bogus symbols ACPI_SLEEP_PROC_(FS|SLEEP) from x86_64/defconfig

Thanks.. kerframil,PaX Team and all others.


--
Ned Ludd <solar@gentoo.org>
Gentoo Linux

--
gentoo-hardened@lists.gentoo.org mailing list
 
Old 02-12-2008, 06:27 AM
Natanael Copa
 
Default latest kernel exploit patch for vmsplice coming?

On Tue, 2008-02-12 at 10:02 +0500, Алексей Лесовский wrote:
> Anyone, can send me compiled exploit? i tests my hardened hosts
> my gcc cannot compile sources

Attatched is a slightly modified version of the exploit that should
compile for you. (uses sysconf(_SC_PAGE_SIZE) rather than PAGE_SIZE from
asm/page.h)

-nc
 
Old 02-12-2008, 07:05 AM
Алексей Лесовский
 
Default latest kernel exploit patch for vmsplice coming?

Ok. I compiled this sources successful, and vhen I execute him I got next

-----------------------------------
Linux vmsplice Local Root Exploit
By qaaz
-----------------------------------
[-] !@#$

and what is it? :-) executed on gentoo-sources kernel, not hardened

Natanael Copa пишет:

On Tue, 2008-02-12 at 10:02 +0500, Алексей Лесовский wrote:


Anyone, can send me compiled exploit? i tests my hardened hosts
my gcc cannot compile sources



Attatched is a slightly modified version of the exploit that should
compile for you. (uses sysconf(_SC_PAGE_SIZE) rather than PAGE_SIZE from
asm/page.h)

-nc



--
gentoo-hardened@lists.gentoo.org mailing list
 
Old 02-12-2008, 07:09 AM
Алексей Лесовский
 
Default latest kernel exploit patch for vmsplice coming?

on hardened I got next

-----------------------------------
Linux vmsplice Local Root Exploit
By qaaz
-----------------------------------
[+] mmap: 0x0 .. 0x1000
[+] page: 0x0
[+] page: 0x20
[+] mmap: 0x4000 .. 0x5000
[+] page: 0x4000
[+] page: 0x4020
[+] mmap: 0x1000 .. 0x2000
[+] page: 0x1000
[+] mmap: 0x51e7d000 .. 0x51eaf000
Ошибка сегментирования - Segmentation Fault

I think PaX prevent exploit))

Алексей Лесовский пишет:

Ok. I compiled this sources successful, and vhen I execute him I got next

-----------------------------------
Linux vmsplice Local Root Exploit
By qaaz
-----------------------------------
[-] !@#$

and what is it? :-) executed on gentoo-sources kernel, not hardened

Natanael Copa пишет:

On Tue, 2008-02-12 at 10:02 +0500, Алексей Лесовский wrote:


Anyone, can send me compiled exploit? i tests my hardened hosts
my gcc cannot compile sources



Attatched is a slightly modified version of the exploit that should
compile for you. (uses sysconf(_SC_PAGE_SIZE) rather than PAGE_SIZE from
asm/page.h)

-nc





--
gentoo-hardened@lists.gentoo.org mailing list
 

Thread Tools




All times are GMT. The time now is 11:55 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org