Re: How to develop a random number generation device

From: Rich Grise <rich@xxxxxxxxxxx>
Date: Mon, 17 Sep 2007 23:16:44 GMT

On Mon, 17 Sep 2007 15:48:35 -0700, Joel Kolstad wrote:

"Nobody" <nobody@xxxxxxxxxxx> wrote in message
news:pan.2007.09.17.22.37.49.78000@xxxxxxxxxxxxxx

With modern hardware (e.g. 80286 and later running in protected
mode), the address space of one process (or the OS kernel) simply isn't
"visible" to another process.

True, but if you can manage to create a buffer overflow in a kernel process
(the TCP/IP stack being a common target here, often implemented as a
kernel-level driver), you have the keys to the kingdom.

I suppose neither of you has ever heard of a "chroot jail".

Cheers!
Rich

.

References:
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: John Larkin
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: John Larkin
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: John Larkin
- Re: How to develop a random number generation device
  - From: John Devereux
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: John Devereux
- Re: How to develop a random number generation device
  - From: John Larkin
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: krw
- Re: How to develop a random number generation device
  - From: MooseFET
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: krw
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: Rich Grise
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: Rich Grise
- Re: How to develop a random number generation device
  - From: Nobody
- Re: How to develop a random number generation device
  - From: Joel Kolstad

Prev by Date: Re: How to develop a random number generation device
Next by Date: Re: How to develop a random number generation device
Previous by thread: Re: How to develop a random number generation device
Next by thread: Re: How to develop a random number generation device
Index(es):
- Date
- Thread

Relevant Pages

Re: chroot question.
... > want to use it to set up a chrooted mandrake installation on my debian ... I found out that if you get root access inside the jail, ... The kernel is from your underlying boot kernel. ... chroot jail, along with other binaries and symbolic links you may load ...
(comp.os.linux.misc)
Re: chroot question.
... > want to use it to set up a chrooted mandrake installation on my debian ... I found out that if you get root access inside the jail, ... The kernel is from your underlying boot kernel. ... chroot jail, along with other binaries and symbolic links you may load ...
(comp.os.linux.security)
Re: real security - no foreign binaries
... I was thinking --- it wouldn't be too hard to make buffer overflow ... attacks impossible. ... I was thinking that part of building a kernel would ... The real security problems are s/w bugs that lead to root> compromise. ...
(comp.os.linux.security)
Re: why so many "potential buffer overflow" alerts?
... > Why is buffer overflow such a common problem? ... overflows in source code, and as we know, source code for many front ... What worries the shit out of me is the runtime kernel ... Phrack just recently and uses the new techniques. ...
(comp.os.linux.security)
Re: why so many "potential buffer overflow" alerts?
... Thank you, Luke, and thank you to the other people who replied. ... Your comments about kernel modules reminded me of something I read in the ... >> Why is buffer overflow such a common problem? ...
(comp.os.linux.security)