Vulnerability Development mailing list archives
Re: OT? Are chroots immune to buffer overflows?
From: Jason Haar <Jason.Haar () trimble co nz>
Date: Thu, 23 May 2002 09:05:58 +1200
On Wed, May 22, 2002 at 08:00:25PM +0200, lorenzo wrote:
as others have already stated, no, you can execute anything from an overflow. But still, you will be able to lock out 99.99% of those script kiddies who just try the overflow. Maybe the percentage is not that accurate, but still the idea is similar..
I'd say from what I've just heard (16 responses in 12 hours - wow!) we can deduce the following: * non-root chrooted jails will stop 99.x% of buffer overflows due to the fact that the majority of such attacks are generic - and therefore rely on the presence of programs on the compromised systems to do their work. * there's a fair chance that a successful attack would need to be hand-crafted to work against your particular system. Congratulations, hacker has left the field for easier pickings ;-) I guess once in-memory (compared with executing local binaries) code execution becomes commonplace, this "advantage" will fade away. Still, nothing beats secure code to begin with. -- Cheers Jason Haar Information Security Manager Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417
Current thread:
- Re: OT? Are chroots immune to buffer overflows?, (continued)
- Re: OT? Are chroots immune to buffer overflows? Kurt Seifried (May 23)
- Re: OT? Are chroots immune to buffer overflows? Berend De Schouwer (May 22)
- Re: OT? Are chroots immune to buffer overflows? L. Walker (May 22)
- Re: OT? Are chroots immune to buffer overflows? Jan Werner (May 23)
- Re: OT? Are chroots immune to buffer overflows? Greg Hunt (May 23)
- Re: OT? Are chroots immune to buffer overflows? Birger Toedtmann (May 22)
- Re: OT? Are chroots immune to buffer overflows? sd (May 22)
- Re: OT? Are chroots immune to buffer overflows? Andreas Ferber (May 22)
- Re: OT? Are chroots immune to buffer overflows? jove (May 23)
- Re: OT? Are chroots immune to buffer overflows? Dave Ahmad (May 23)
- Message not available
- Re: OT? Are chroots immune to buffer overflows? Jason Haar (May 23)
- Re: OT? Are chroots immune to buffer overflows? dev-null (May 22)
- RE: OT? Are chroots immune to buffer overflows? Stuart Adamson (May 22)
- RE: OT? Are chroots immune to buffer overflows? Steve Bremer (May 23)
- Re: OT? Are chroots immune to buffer overflows? Adam Lydick (May 23)
- Re: OT? Are chroots immune to buffer overflows? Iván (May 23)
- Re: OT? Are chroots immune to buffer overflows? Steve Bremer (May 24)
- RE: OT? Are chroots immune to buffer overflows? Stuart Adamson (May 24)
- Re: OT? Are chroots immune to buffer overflows? Hank Leininger (May 28)
- Re: OT? Are chroots immune to buffer overflows? Jose Nazario (May 28)