[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenBSD rootkit?

To: Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
Subject: Re: OpenBSD rootkit?
From: Theo de Raadt <deraadt@cvs.openbsd.org>
Date: Sun, 14 Jul 2002 04:08:20 -0600
Cc: tech@openbsd.org

> On Sun, Jul 14, 2002, Theo de Raadt wrote:
> > > This claim is wrong, OpenSSH was vulnerable to CRC32 integer overflow
> > > two years ago.
> > But if we recall, OpenBSD was not vulnerable in that case because we
> 
> It was *probably* not exploitable, but still *vulnerable*. Be more
> careful with such statements.

It was not vulnerable to a remote root hole LIKE IT SAYS ON THE DAMN WEB
PAGE.

IF YOU HAVE TO BE DIFFICULT, PLEASE STAY ON TOPIC.

> > got lucky with our malloc.
> 
> 'Our' malloc? It's phkmalloc from FreeBSD.

Yes, OUR malloc.

Follow-Ups:
- Re: OpenBSD rootkit?
  - From: Przemyslaw Frasunek <venglin@freebsd.lublin.pl>

References:
- Re: OpenBSD rootkit?
  - From: Przemyslaw Frasunek <venglin@freebsd.lublin.pl>

Prev by Date: Re: OpenBSD rootkit?
Next by Date: Re: OpenBSD rootkit?
Prev by thread: Re: OpenBSD rootkit?
Next by thread: Re: OpenBSD rootkit?
Index(es):
- Date
- Thread