Intervju z Joanno Rutkowsko

> SELinux: cheddar_bay.


"A vulnerability which, when viewed at the source level, is unexploitable!
But which, thanks to gcc optimizations, becomes exploitable :)"

GCC odstrani "security check"*, pa niti warninga ne izpiše ?
No ja, spet ima Linus razlog, da benti čez GCC ekipo.


* - sigurno se najde kdo, ki bo rekel, da to ni in bla bla, ampak v praksi je točno to. Mogoče niti ne "security" check, ampak check je in programer ga je dal tja z razlogom.

Off-topic:

Zato ker so sedaj vsi geeki zaljubljeni v to žensko. In bi bili strašno razočarani, če bi bil to v resnici moški...

I lol'd.

On-topic:

Najbolj varen sistem je imo tisti, do katerega nima nihce dostopa. Seveda pa je prakticna uporabnost takega sistema vprasljiva.

Tipi precej blefirajo. Joanni so vdrli v shared webhosting account, big deal, dobili niso niti roota.

$ uname -a Linux heze.lunarpages.com 2.6.9-78.0.22.ELsmp #1 SMP Thu Apr 30 19:14:39 EDT 2009 i686 i686 i386 GNU/Linux $ grep invisi /etc/passwd invisi6:x:32181:32182::/home/invisi6:/usr/local/cpanel/bin/noshell $ host invisiblethingslab.com invisiblethingslab.com has address 216.97.235.20 $ /sbin/ifconfig | grep 216.97.235.20 | head -n 1 inet addr:216.97.235.20 Bcast:216.97.235.255 Mask:255.255.255.0

http://www.lunarpages.com/