Re: dev mem injection

["Valdis' Mustache" <security.mustachio () gmail com>]

Mark,

I will not presume to speculate as to the intent of Mssr. Lineberry or on
the veracity of his claims (indeed, the posted diffs speak very well for
themselves), beyond confirming, as Dr. Spengler has, that GRSec indeed has
contained protections against spurious writes to /dev/mem and /dev/kmem
since the beginning of this millenium. [1]

Still, I must rise to the defense of Anthony's fabulous and highly-regarded
mustache [2] [3].

Anthony's mustache is quite well respected among the security mustache
community, a sine qua non of facial hair accoutrement that is beyond
reproach! Such fine bristles! Such symmetry! So well framed with a matching
unruly mane! So nicely peppered with a fine yellowy nicotine patina from the
ever-present Newport burning to its south! Truly, a mustache to be
remembered in story and song.

If Anthony has been led astray by the lure of hacker fame and its requisite
trappings (Asian girlfriends, ready access to Ritalin, and Syngress
authorship), I assure you, his mustache had little to do with it.

I have sent missives to Anthony's mustache through various means (I believe
its wearer is currently somewhere near a hashish bar in Amsterdam), and have
also sent inquiries to the greater Los Angeles security mustache community,
to be delivered upon the mustache's return to the United States.

It is my fervent hope that Anthony's mustache will weigh in on this matter
shortly, and clear up any misunderstanding.



[1] I understand other LSM-enabled kernel security projects integrated
similar /dev/mem protections as well, once requisite SELinux compatibility
updates (to support hooking via SMM) were made to CIPAV and other CIA and
NSA-managed rootkits.

[2] http://www.flickr.com/photos/anthonymckay/3136306588/sizes/l/

[3] http://www.flickr.com/photos/anthonymckay/2538059570/sizes/o/



Your Humble Servant,
De Mustache van Valdis


On Wed, Apr 15, 2009 at 8:45 PM, Biz Marqee <biz.marqee () gmail com> wrote:

> Oh Anthony,
>
> Why do you rip off other peoples work and claim it as your own? ...
> http://rafb.net/p/ZbqJKb55.html
>
> Do you think we live under a rock and don't know this technique has been
> around for a long time? See the comments on
> http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=216500687for a better idea...
>
> You are a joke and a cancer on this industry. You steal others work, try
> and claim it as your own in order to drive sales to your company.
>
>
>
> Fuck you and die, you motherless cunt.
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/