Re: How to develop a random number generation device

From: "Joel Kolstad" <JKolstad71HatesSpam@xxxxxxxxx>
Date: Mon, 17 Sep 2007 15:48:35 -0700

"Nobody" <nobody@xxxxxxxxxxx> wrote in message
news:pan.2007.09.17.22.37.49.78000@xxxxxxxxxxxxxx

With modern hardware (e.g. 80286 and later running in protected
mode), the address space of one process (or the OS kernel) simply isn't
"visible" to another process.

True, but if you can manage to create a buffer overflow in a kernel process
(the TCP/IP stack being a common target here, often implemented as a
kernel-level driver), you have the keys to the kingdom.

.

Follow-Ups:
- Re: How to develop a random number generation device
  - From: Vladimir Vassilevsky
- Re: How to develop a random number generation device
  - From: Rich Grise

References:
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: John Larkin
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: John Larkin
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: John Larkin
- Re: How to develop a random number generation device
  - From: John Devereux
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: John Devereux
- Re: How to develop a random number generation device
  - From: John Larkin
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: krw
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: krw
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: Rich Grise
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: Rich Grise
- Re: How to develop a random number generation device
  - From: Nobody

Prev by Date: Re: where's the cheapest electricity?
Next by Date: Re: Measuring current in phone lines
Previous by thread: Re: How to develop a random number generation device
Next by thread: Re: How to develop a random number generation device
Index(es):
- Date
- Thread

Relevant Pages

Re: real security - no foreign binaries
... I was thinking --- it wouldn't be too hard to make buffer overflow ... attacks impossible. ... I was thinking that part of building a kernel would ... The real security problems are s/w bugs that lead to root> compromise. ...
(comp.os.linux.security)
Re: why so many "potential buffer overflow" alerts?
... > Why is buffer overflow such a common problem? ... overflows in source code, and as we know, source code for many front ... What worries the shit out of me is the runtime kernel ... Phrack just recently and uses the new techniques. ...
(comp.os.linux.security)
Re: why so many "potential buffer overflow" alerts?
... Thank you, Luke, and thank you to the other people who replied. ... Your comments about kernel modules reminded me of something I read in the ... >> Why is buffer overflow such a common problem? ...
(comp.os.linux.security)
[PATCH 2.6] I2C: Prevent buffer overflow on SMBus block read in i2c-viapro
... i2c-viapro through i2c-dev. ... a buffer operation when doing a SMBus block read in the i2c-viapro ... the driver) but for some reason it was never ported to the 2.6 kernel ... I am not a security expert but I would guess that such a buffer overflow ...
(Linux-Kernel)
Re: Value too large for defined data type error text should be: Kernel buffer overflow?
... How do you know it's a "buffer overflow in kernel"? ... that you get an error message that seems to be related to EOVERFLOW. ... values of errno from is rather likely somewhere in libc). ...
(comp.os.linux.development.apps)