Dailydave mailing list archives

Re: re: PaX PoC-exploit.

From: Joel Eriksson <je-dailydave () bitnux com>
Date: Sat, 8 May 2004 02:07:54 +0200

On Fri, May 07, 2004 at 04:42:57PM -0400, Sinan Eren wrote:

Ouch, that hurt. :) It wasn't meant to be revolutionary though, just a PoC
implementation of something that has been known but ignored for years. Btw,
everyone already knows you have godlike skills, noir. You don't have to put
down us lesser beings to prove it. :)


first of all i personally did not aim to hurt your feelings or 
underestimate your skills. i truely found your PoC much pointless compared 
to what those 2 phrack articles* against PaX has to offer and say.

*http://www.phrack.org/show.php?p=59&a=9
 http://www.phrack.org/show.php?p=58&a=4


Agreed, thanks for notifying me of p59-9 btw. I vaguely remember reading it
when p59 was released but I have forgotten about it since

second i dont think cynicism is your best virtue.


I did take your comment a bit personally, the PoC was just intended as a
practical example of a known type of attack. Obviously it cannot be compared
with original work like the phrack articles you mentioned.

Regarding your skills I was just being honest though.

Indeed. So I spent some time discussing it with pipacs (the PaX-developer
that replied to my PaX-PoC mail) and decided to implement it myself.


i am not quite sure whats up with this revealing the handle game is about.
i guess you're using Dave's unmask or something ....


Once again, I'm truly sorry about this. :/ If I had known the handle was
supposed to be secret (if that is indeed the case?) I would not have
mentioned it.

thanks for the following! it's highly informative. bypassing no-exec can 
be a big deal if you're stuck in a no-exec chroot jail with a tmp/ 
directory and have a kernel sploit handy.

[snip]

Okay, I'm glad I could contribute with something then. :)

-sinan


-- 
Best Regards,
   Joel Eriksson
-------------------------------------------------
Cellphone: +46-70 228 64 16 Home: +46-26-10 23 37
Security Research & Systems Development at Bitnux
PGP Key Server pgp.mit.edu, PGP Key ID 0x08811B44
DF38 5806 0EFB 196E E4B6 34B5 4C01 73BB 0881 1B44
-------------------------------------------------
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://www.immunitysec.com/mailman/listinfo/dailydave

Current thread:

Re: re: PaX PoC-exploit., (continued)
- - - Re: re: PaX PoC-exploit. pageexec (May 03)
    - Re: re: PaX PoC-exploit. Joel Eriksson (May 04)
    - Message not available
    - Re: re: PaX PoC-exploit. pageexec (May 04)
    - Re: re: PaX PoC-exploit. Sinan Eren (May 06)
    - Re: re: PaX PoC-exploit. Nahual (May 06)
    - Re: re: PaX PoC-exploit. Nenad Stojanovski (May 06)
    - Re: re: PaX PoC-exploit. Joel Eriksson (May 06)
    - Re: re: PaX PoC-exploit. ned (May 06)
    - Re: re: PaX PoC-exploit. Joel Eriksson (May 07)
    - Re: re: PaX PoC-exploit. Sinan Eren (May 07)
    - Re: re: PaX PoC-exploit. Joel Eriksson (May 07)