Full Disclosure mailing list archives
Re: dev mem injection
From: "Valdis' Mustache" <security.mustachio () gmail com>
Date: Fri, 17 Apr 2009 12:10:54 -0500
Mark, I will not presume to speculate as to the intent of Mssr. Lineberry or on the veracity of his claims (indeed, the posted diffs speak very well for themselves), beyond confirming, as Dr. Spengler has, that GRSec indeed has contained protections against spurious writes to /dev/mem and /dev/kmem since the beginning of this millenium. [1] Still, I must rise to the defense of Anthony's fabulous and highly-regarded mustache [2] [3]. Anthony's mustache is quite well respected among the security mustache community, a sine qua non of facial hair accoutrement that is beyond reproach! Such fine bristles! Such symmetry! So well framed with a matching unruly mane! So nicely peppered with a fine yellowy nicotine patina from the ever-present Newport burning to its south! Truly, a mustache to be remembered in story and song. If Anthony has been led astray by the lure of hacker fame and its requisite trappings (Asian girlfriends, ready access to Ritalin, and Syngress authorship), I assure you, his mustache had little to do with it. I have sent missives to Anthony's mustache through various means (I believe its wearer is currently somewhere near a hashish bar in Amsterdam), and have also sent inquiries to the greater Los Angeles security mustache community, to be delivered upon the mustache's return to the United States. It is my fervent hope that Anthony's mustache will weigh in on this matter shortly, and clear up any misunderstanding. [1] I understand other LSM-enabled kernel security projects integrated similar /dev/mem protections as well, once requisite SELinux compatibility updates (to support hooking via SMM) were made to CIPAV and other CIA and NSA-managed rootkits. [2] http://www.flickr.com/photos/anthonymckay/3136306588/sizes/l/ [3] http://www.flickr.com/photos/anthonymckay/2538059570/sizes/o/ Your Humble Servant, De Mustache van Valdis On Wed, Apr 15, 2009 at 8:45 PM, Biz Marqee <biz.marqee () gmail com> wrote:
Oh Anthony, Why do you rip off other peoples work and claim it as your own? ... http://rafb.net/p/ZbqJKb55.html Do you think we live under a rock and don't know this technique has been around for a long time? See the comments on http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=216500687for a better idea... You are a joke and a cancer on this industry. You steal others work, try and claim it as your own in order to drive sales to your company. Fuck you and die, you motherless cunt. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- dev mem injection Biz Marqee (Apr 16)
- Re: dev mem injection Valdis' Mustache (Apr 17)