Re: [funsec] Vista Protected Processes Bypassed

[Valdis.Kletnieks () vt edu]

On Sun, 08 Apr 2007 12:07:47 EDT, C Q said:
> Overall, it's not really worse than what you'd have with XP...
> I'm not a big fan of Vista, but this is definitely not what
> people make it to be.

That protection bit isn't what people make it to be either, which is
the whole point.

Quite often, the *real* security issue is that the protection a given feature
*actually* provides by design isn't the security that people *think* it
provides.  For example, some of us may remember a while ago, when there was
a whole flurry of activity regarding TCP sequence numbers and RST packets.

Turned out that in fact, TCP has *always* worked that way, in that an RST
doesn't have to match exactly, it only needs to be inside the window. When
RTT*bandwidth products were low and windows were small, in a 2**32 sequence
space, the distinction between "match" and "within 16K" was easily overlooked.
The community just needed a slap upside the head, because with multi-megabyte
windows on today's high-speed links, the distinction *is* important....

Attachment: _bin
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/