Cisco Seminar
Posted by
Norbert on Thu Jun 23 20:21 PHT 2005
From the "misc - is this wretched cisco-ez" section
We've just attended some Cisco Security Summit at Hotel Intercon.
Before the end of the seminar, they had a raffle promo and I won a "very big"
umbrella courtesy of
Trends and Technologies, Inc. I've
also got a polo shirt with stitched
Cisco logo.
The umbrella was very useful because on our way home... here come's the heavy rain!
Good timing isn't it?
0604 - PhilBSD BoF
Posted by
Norbert on Sat Jun 4 02:49 PHT 2005
From the "events to attend" section
The Philippine BSD Group will be having a BoF this
Saturday, June 4, 2005 1:30 pm at CSSP Computer
Lab, Room 115-119, Palma Hall, University of the
Philippines, Diliman, Quezon City.
Of course, we will be discussing BSD-related
topics...
And we'll surely have a good cup of coffee :-)
FreeBSD patches from OpenBSD
Posted by
Norbert on Wed Jun 1 00:32 PHT 2005
From the "the power to serve!" section
from the
FreeBSD
project created two patches for FreeBSD that implements
OpenBSD's
stackgap feature which minimizes the chances of stack-based
buffer overflow attacks and randomized mmap features.
You can get the stackgap patch
here
and the randomized mmap patch
here.
Basically, buffers are at the same place on the stack. But allocation
on the top of the stack is usually predictable, hence it is also easy
for an attacker to predict the return address of a buffer. This can
allow possible code execution, for example, by overwriting the return
address with a pointer to the code on an overflowed buffer. The stackgap
feature minimizes this threat by placing randomly sized gap on top of the
stack.
Randomized mmap (it's very obvious in the name 'randomized mmap' :-)
makes address space allocation much more difficult to guess by randomly
allocating different address space each time a program is run.
These techniques were presented by
Theo de Raadt
during last year's
HITB
and
BSDCAN.
The slides of the talk is available
here.
