oss-sec mailing list archives

RE: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method

From: "Christey, Steven M." <coley () mitre org>
Date: Mon, 26 Jun 2017 20:49:43 +0000

Even if it turns into an awkward conversation, I'm sure that Solar would be polite, pointed, and respectful.  We could 
all learn from his style of moderation.

- Steve

-----Original Message-----
From: Kurt Seifried [mailto:kseifried () redhat com]
Sent: Monday, June 26, 2017 3:47 PM
To: oss-security <oss-security () lists openwall com>
Cc: Pax Team <pageexec () freemail hu>
Subject: Re: [oss-security] Re: More CONFIG_VMAP_STACK vulnerabilities,
refcount_t UAF, and an ignored Secure Boot bypass / rootkit method

I think we can agree as a community of professionals that insults and name
calling are unnecessary and also not very effective. And before I get
accused of censorship I would point out I'm not wanting to stop anyone from
talking, I'm only wanting to stop people from talking in a way that is so
rude and insulting that it poisons the community and scares people away. I
assume Solar also supports this (if not... ergh. that's gonna be an awkward
conversation).

On Mon, Jun 26, 2017 at 1:16 PM, Mansour Moufid
<mansourmoufid () gmail com>
wrote:

Hello.

On Sat, Jun 24, 2017 at 9:35 PM, Brad Spengler <spender () grsecurity net>
wrote:

How could they know that calling people clowns and their work garbage

wasn't

payment enough?

With no technical content coming from your end, there's no need to

discuss

anything further -- don't waste your time because I won't reply.

Good luck to you and anyone else stupid enough to do any work at all for
you and your multi-billion dollar sponsors for free.

-Brad


Is there another mailing list for discussions of Linux security? Or forum?

I have been thinking of sharing a few patches for the last couple months.
I don't think this is the right place after the kind of insults I saw this
week.

Apologies if off topic.




--

Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Red Hat Product Security contact: secalert () redhat com

Current thread:

More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Brad Spengler (Jun 23)
- Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Linus Torvalds (Jun 23)
  - Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Brad Spengler (Jun 24)
  - Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Brad Spengler (Jun 24)
    - Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Linus Torvalds (Jun 24)
    - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Brad Spengler (Jun 24)
    - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Mansour Moufid (Jun 26)
    - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Kurt Seifried (Jun 26)
    - RE: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Christey, Steven M. (Jun 26)
    - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit meth PaX Team (Jun 27)
    - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit meth Kurt Seifried (Jun 26)
    - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit meth PaX Team (Jun 27)
    - civilized discussion (Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method) Solar Designer (Jun 26)
    - Re: civilized discussion (Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method) Kurt Seifried (Jun 26)
    - Re: civilized discussion (Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method) Kyle R (Jun 27)
  - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Shawn (Jun 24)
    - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Solar Designer (Jun 24)
    - Re: Re: More CONFIG_VMAP_STACK vulnerabilities, refcount_t UAF, and an ignored Secure Boot bypass / rootkit method Shawn (Jun 24)