Collaborate Disseminate
Leaking pointers from the kernel can be useful to an attacker. Normally, pointers are printed using a special identifier, %pK, which will sanitize them. However, there are times when a kernel pointer is unintentionally revealed, for exampl… Continue reading Identifying kernel pointer infoleaks via static analysis
I’m asking myself if the function printk() causes security issues on Linux.
When an attacker has user level access to the system, does it make his life easier if he has access to kernel pointers? Does the usage of printk() su… Continue reading Does printk() cause any security issues?
I’m learning how to properly configure iptables to fend off TCP port scans on a hosted Linux-based VPS — I’m not particularly interested in blocking this kind of attack, but rather in understanding why I experience problems … Continue reading Could an intermittent or "resuming" connection be caught as a TCP port scan attempt?
Another day, another vulnerability. Discovered by [Kevin Backhouse], CVE-2018-4407 is a particularly serious problem because it is present all throughout Apple’s product line, from the Macbook to the Apple Watch. The flaw is in the XNU kernel shared by all of these products.
This is a buffer overflow issue in the error handling for network packets. The kernel is expecting a fixed length of those packets but doesn’t check to prevent writing past the end of the buffer. The fact Apple’s XNU kernel powers all their products is remarkable, but issues like this are a reminder of the potential downside …read more
Continue reading Apple Kernel Code Vulnerability Affected All Devices
In the security news, Russian Hackers use Malware that can survive OS reinstalls, Facebook’s 2-Factor authentication With a phone number isn’t only for security, it’s used for ads ,FBI warns companies about hackers increasingly abusing RDP connections,… Continue reading Linux Bugs, macOS Zero-Day, & Twitter Exposed – Paul’s Security Weekly #577
I have read several books about hardening the kernel of Mac OS.
I am using Mac OS Mojave.
Based on some repo’s on github and the help of some friend I came up with these kernel parameters below.
What do you think of them, wo… Continue reading Changing kernel parameters of Mac OS Mojave
I have a Debian system running the following kernel version:
Linux REDACTED 4.9.0-7-amd64 #1 SMP Debian 4.9.110-3+deb9u2 (2018-08-13) x86_64 GNU/Linux Linux REDACTED 4.9.0-7-amd64 #1 SMP Debian 4.9.110-3+deb9u2 (2018-08-13) … Continue reading Is Debian 9.5 stretch vulnerable to CVE-2018-17182?
In the security news, Russian Hackers use Malware that can survive OS reinstalls, Facebook’s 2-Factor authentication With a phone number isn’t only for security, it’s used for ads ,FBI warns companies about hackers increasingly abusing RDP connections,… Continue reading Linux Bugs, macOS Zero-Day, & Twitter Exposed – Paul’s Security Weekly #577
Researchers said the vulnerability “is very easy to exploit.” Continue reading Local-Privilege Escalation Flaw in Linux Kernel Allows Root Access
Linux started as a student project in the 1990s, the creation of Linus Torvalds. He has attained celebrity status while steering his creation through the decades, but along the way he has also attracted a different reputation within the Linux and software community. He is famous for his outbursts and rants, some of which become rather personal, and it is not difficult at all to find kernel developers or would-be kernel developers who have turned their backs on the project as a result.
It’s very refreshing indeed then to read an update from [Linus] as part of his regular communications, …read more