Computer security? Linux is better? Have you forgotten the whole debacle where two lines of the SSL code were removed reducing cryptographic security for the
entire operating system to 32,767 possible private keys?
Yeah, I really want these people to be designing my operating system. When utter freaktards comment out bits of subtle and carefully constructed code because they don't know what it does, leading to total security vunerability to all network traffic.
And you have the cheek to call Vista insecure...
http://www.darkreading.com/document.asp?doc_id=154746
-
Follow
Oops, something didn't work.
Sign In to be begin to follow this thread
What does this mean?
Following an item on Channel 9 allows you to watch for new content and comments that you are interested in. You need to be signed in to Channel 9 to use this feature.Getting "follow" information
Start following this thread
What does this mean?
Following an item on Channel 9 allows you to watch for new content and comments that you are interested in and view them all on your notifications page.Removing your "follow"
Setting up your "follow"
Did you know you can
sign up for email notifications?
-
evildictaitor
Devil's advocate
-
stevo_
Human after all
32,767 private keys is enough for anybody phht!evildictaitor said:
Computer security? Linux is better? Have you forgotten the whole debacle where two lines of the SSL code were removed reducing cryptographic security for the entire operating system to 32,767 possible private keys?
Yeah, I really want these people to be designing my operating system. When utter freaktards comment out bits of subtle and carefully constructed code because they don't know what it does, leading to total security vunerability to all network traffic.
And you have the cheek to call Vista insecure...
http://www.darkreading.com/document.asp?doc_id=154746
-
blowdart
Peek-a-boo
Come now, SSL isn't part of the kernel per se, it was a distro problem. This is more serious in that it seems to attack the kernel protection methods. Getting around DEP is very interesting; but address randomisation is a problem for every OS if it proves to be portable.evildictaitor said:
Computer security? Linux is better? Have you forgotten the whole debacle where two lines of the SSL code were removed reducing cryptographic security for the entire operating system to 32,767 possible private keys?
Yeah, I really want these people to be designing my operating system. When utter freaktards comment out bits of subtle and carefully constructed code because they don't know what it does, leading to total security vunerability to all network traffic.
And you have the cheek to call Vista insecure...
http://www.darkreading.com/document.asp?doc_id=154746
-
evildictaitor
Devil's advocate
But not enough for everybody.stevo_ said:
32,767 private keys is enough for anybody phht!evildictaitor said:*snip*
@blowdart - I'm not disputing that this is an interesting Vista exploit. I'm just utterly perplexed as to why corona can harp on about Vista's total flaws in security and gloss over the SSL flaw.
While the flaw in Windows Vista could potentially allow a malicious attacker to compromise your computer when you're browsing the internet, the SSL flaw allowed any encrypted traffic (including traffic with your bank) to be inspected by any computer along the network chain simply by brute forcing your private key against one of their 32,767 pre-computable variants.
Put another way, the Vista hack allows bad guys to install bad software on your machine when you visit their site. The Linux hack allows bad guys to get at your bank account when you visit someone else's site (namely your bank's).
-
blowdart
Peek-a-boo
Ah it's calling it a linux hack I object to; it was a single distro and its children that had the problemevildictaitor said:
But not enough for everybody.stevo_ said:*snip*
@blowdart - I'm not disputing that this is an interesting Vista exploit. I'm just utterly perplexed as to why corona can harp on about Vista's total flaws in security and gloss over the SSL flaw.
While the flaw in Windows Vista could potentially allow a malicious attacker to compromise your computer when you're browsing the internet, the SSL flaw allowed any encrypted traffic (including traffic with your bank) to be inspected by any computer along the network chain simply by brute forcing your private key against one of their 32,767 pre-computable variants.
Put another way, the Vista hack allows bad guys to install bad software on your machine when you visit their site. The Linux hack allows bad guys to get at your bank account when you visit someone else's site (namely your bank's).
-
blowdart
Peek-a-boo
One of the key mechanisms used is the fact that the protections are not always applied. Internet Explorer 7 and Firefox 2 both opt out of DEP, and many third-party libraries such as the Flash plugin opt out of ASLR (and other protection mechanisms). Plugins can also do things that can deliberately defeat the OS's countermeasures; Java, for example, marks all of its memory as executable, meaning that a Java applet can place into memory executable code that's immune to DEP protection. The final trick is to use scripting or plugins to file large amounts of memory with the malicious executable code, so that even when ASLR is in effect, an attacker can still be sure that the malicious code is where he needs it to be. Together, these techniques allow all of the protections found in Vista to be defeated.
So two open source ("Many eyes make it more secure") applications opt out of DEP. Naughty. (Oh and under Vista you can turn DEP on for IE - I have it set that way)
-
mVPstar
I'm white because I smelt an onion.
So, basically, it's because the plugins themselves haven't been coded right that these attacks can be carried out? (sorry, the paper wont load for me)blowdart said:An interesting analysis
One of the key mechanisms used is the fact that the protections are not always applied. Internet Explorer 7 and Firefox 2 both opt out of DEP, and many third-party libraries such as the Flash plugin opt out of ASLR (and other protection mechanisms). Plugins can also do things that can deliberately defeat the OS's countermeasures; Java, for example, marks all of its memory as executable, meaning that a Java applet can place into memory executable code that's immune to DEP protection. The final trick is to use scripting or plugins to file large amounts of memory with the malicious executable code, so that even when ASLR is in effect, an attacker can still be sure that the malicious code is where he needs it to be. Together, these techniques allow all of the protections found in Vista to be defeated.
So two open source ("Many eyes make it more secure") applications opt out of DEP. Naughty. (Oh and under Vista you can turn DEP on for IE - I have it set that way)
-
Maddus Mattus
Maddus on C9, Is often controversial, But fun none-the-less -evildictaitor
A chain is as strong as it's weakest link,....mVPstar said:
So, basically, it's because the plugins themselves haven't been coded right that these attacks can be carried out? (sorry, the paper wont load for me)blowdart said:*snip* -
Bas
It finds lightbulbs.
Are there any drawbacks to turning on DEP for IE? Why is it off by default, anyway?blowdart said:An interesting analysis
One of the key mechanisms used is the fact that the protections are not always applied. Internet Explorer 7 and Firefox 2 both opt out of DEP, and many third-party libraries such as the Flash plugin opt out of ASLR (and other protection mechanisms). Plugins can also do things that can deliberately defeat the OS's countermeasures; Java, for example, marks all of its memory as executable, meaning that a Java applet can place into memory executable code that's immune to DEP protection. The final trick is to use scripting or plugins to file large amounts of memory with the malicious executable code, so that even when ASLR is in effect, an attacker can still be sure that the malicious code is where he needs it to be. Together, these techniques allow all of the protections found in Vista to be defeated.
So two open source ("Many eyes make it more secure") applications opt out of DEP. Naughty. (Oh and under Vista you can turn DEP on for IE - I have it set that way)
-
Sven Groot
Don't worry... I'm a doctor.
Because some IE add-ons don't work properly when it's on. Particularly plugins compiled with older versions of ATL will have trouble.Bas said:
Are there any drawbacks to turning on DEP for IE? Why is it off by default, anyway?blowdart said:*snip* -
It crashes a lot of third party plug-ins that aren't DEP-compatible.Bas said:
Are there any drawbacks to turning on DEP for IE? Why is it off by default, anyway?blowdart said:*snip* -
stevo_
Human after all
So a plugin takes down the entire process for IE? and this exploit it based not on getting around the protection, but literally because the protection is being turned off for arguable legacy reasons in some areas.. or bad design of 3rd party developers?AndyC said:
It crashes a lot of third party plug-ins that aren't DEP-compatible.Bas said:*snip* -
wisemx
Live it
These silly MAC is more secure comments remind of of the old saying. . .
A man can't stand in a bucket grab the handle and lift himself up.
-
evildictaitor
Devil's advocate
True. The fault was with Debian and all of it's lower distributions.blowdart said:
Ah it's calling it a linux hack I object to; it was a single distro and its children that had the problemevildictaitor said:*snip*
-
Sven Groot
Don't worry... I'm a doctor.
It does. An IE plugin is an unmanaged DLL, it gets all privileges IE itself has. It has full access to IE's object model, and could also run all over IE's address space if it wanted to. Detecting faults in a plugin like that and recovering from them in such a way that it leaves the host process (IE) in a consistent state is impossible (it's pretty much a variant of the halting problem, not exactly but similar). Crashing the host process if the plugin faults is the only reasonable thing to do.stevo_ said:
So a plugin takes down the entire process for IE? and this exploit it based not on getting around the protection, but literally because the protection is being turned off for arguable legacy reasons in some areas.. or bad design of 3rd party developers?AndyC said:*snip*
Now if IE would natively support .Net plugins that wouldn't always need to be the case (that'd be really nice to have for IE8, for more reasons than just that one). -
Bas
It finds lightbulbs.
Sven Groot said:
It does. An IE plugin is an unmanaged DLL, it gets all privileges IE itself has. It has full access to IE's object model, and could also run all over IE's address space if it wanted to. Detecting faults in a plugin like that and recovering from them in such a way that it leaves the host process (IE) in a consistent state is impossible (it's pretty much a variant of the halting problem, not exactly but similar). Crashing the host process if the plugin faults is the only reasonable thing to do.stevo_ said:*snip*
Now if IE would natively support .Net plugins that wouldn't always need to be the case (that'd be really nice to have for IE8, for more reasons than just that one).Now if IE would natively support .Net plugins that wouldn't always need to be the case (that'd be really nice to have for IE8, for more reasons than just that one).
Definitely. I'd be all over writing IE plugins if they were possible to do in .NET. Probably never going to happen, though.
Same thing goes for shell extensions by the way. -
stevo_
Human after all
Alright makes sense.. surely its possible to write a modular unmanaged process where the hardware manages the memory access rights of each "module"? or is the smallest unit of hardware security guarentee a windows process?Sven Groot said:
It does. An IE plugin is an unmanaged DLL, it gets all privileges IE itself has. It has full access to IE's object model, and could also run all over IE's address space if it wanted to. Detecting faults in a plugin like that and recovering from them in such a way that it leaves the host process (IE) in a consistent state is impossible (it's pretty much a variant of the halting problem, not exactly but similar). Crashing the host process if the plugin faults is the only reasonable thing to do.stevo_ said:*snip*
Now if IE would natively support .Net plugins that wouldn't always need to be the case (that'd be really nice to have for IE8, for more reasons than just that one). -
littleguru
<3 Seattle
Why don't I expect IE8 to ship with support for .NET addins... hmmm...Sven Groot said:
It does. An IE plugin is an unmanaged DLL, it gets all privileges IE itself has. It has full access to IE's object model, and could also run all over IE's address space if it wanted to. Detecting faults in a plugin like that and recovering from them in such a way that it leaves the host process (IE) in a consistent state is impossible (it's pretty much a variant of the halting problem, not exactly but similar). Crashing the host process if the plugin faults is the only reasonable thing to do.stevo_ said:*snip*
Now if IE would natively support .Net plugins that wouldn't always need to be the case (that'd be really nice to have for IE8, for more reasons than just that one).
Thread Closed
This thread is kinda stale and has been closed but if you'd like to continue the conversation, please create a new thread in our Forums,
or Contact Us and let us know.