cmu.edu · Domains · Slashdot Mirror

Re:Not all run it as root ... by Wrath0fb0b · 2019-04-04 12:22 · Score: 4, Informative · on Apache Web Server Bug Grants Root Access On Shared Hosting Environments (zdnet.com)

you need root privileges to bind to port 80

Common sense would indicate that in that scenario you either

1. Get the socket as early as possible in startup then setuid(2) yourself to a user with lower privileges (and chroot yourself, while you are at it) before answering any requests
2. Failing that, run on a high numbered port and have iptables forward you traffic from 80, which is a specific instance of the more general strategy: run as little code as possible at high privilege

What's not an answer is "run the actual process as root while serving user requests". It's shocking that this is even considered remotely like a possible solution.

What's doubly galling is that there is a loooong unix history of applications that require far more intrusive privileges using both or these techniques -- either getting what they need and immediately dropping to the position of least privilege or using a small shim or utility that runs in a high-privileged space and communicates with the rest of the service via IPC. So it's not like they couldn't draw on those examples or literally just copy-pasta DJB's code.

What's triply galling is that the fix doesn't actually appear to mentioned fixing any of this, just patching this one vulnerability.

Re:USA Number One! by AmiMoJo · 2019-03-18 21:47 · Score: 2 · on U.S. Students Have Achieved World Domination in Computer Science Skills -- For Now (ieee.org)

It's fake news. Here is an article with a better photo of the whole team: https://www.cmu.edu/news/stori...

As you can see, the team is more diverse than your image suggests.

Re:USA Number One! by Stinky+Cheese+Man · 2019-03-18 15:52 · Score: 2 · on U.S. Students Have Achieved World Domination in Computer Science Skills -- For Now (ieee.org)

I'm not sure what year your photo is supposed to be from, but a photo of the actual U.S. team in the 2018 International Mathematical Olympiad, led by coach Po-Shen Loh, leads one to a similar conclusion.

https://www.cmu.edu/news/stori...

Re:Magic free money by Mr.+Dollar+Ton · 2019-03-03 18:03 · Score: 4, Informative · on France Considers Raising Taxes on Internet Giants (reuters.com)

They won't because they can't. Here's an explainer, with TL;DR section.

https://www.cs.cmu.edu/~ref/ec...

Sneakernet by tepples · 2019-01-24 04:35 · Score: 1 · on YouTube TV Opens To the Whole US (venturebeat.com)

If your friend ditches the local cable company and the local fiber company, he or she will lose high-speed Internet access and may have to fall back to sneakernet: trading copies of shows on hard drives. Sneakernet dissemination of creative works has been around for a while; an older example is "tape trees" organized by fans of the Grateful Dead. It could work for movies, scripted TV series, and in-depth news magazines. It's not ideal for reality, game shows, entertainment award shows, sports, daily political commentary, and other works with a short shelf life.

Re:Already Accomplished by CMU in the 80s by aitikin · 2018-12-19 02:58 · Score: 1 · on Ex-Uber Engineer Claims a Self-Driving Car Drove Him Coast-To-Coast (theguardian.com)

Interesting. I was not aware of this. Thanks!

Re:Isn't this a waste? by ls671 · 2018-11-14 16:18 · Score: 1 · on Safari Tests 'Not Secure' Warning For Unencrypted Websites (cnet.com)

Signing != encrypting! Granted, SSL might make it harder to alter content but it is weak compared to signing the content.

What you are saying is like saying that since you downloaded a piece of software through SSL, you are safe enough and you don't need to check the signature.

Note that signing doesn't require encryption at all.

Some corporate environments and maybe even some countries could force you to have their certs trusted. They can then alter content at will.

So in the end, you do not need encryption at all to make sure the content hasn't been altered. You only need signing. Furthermore, encryption is a weak way to guarantee that content hasn't been altered compared to signing.

See here if you weren't already aware of that fact:
https://users.ece.cmu.edu/~adr...

Re:Post the source code by Wrath0fb0b · 2018-08-08 02:02 · Score: 4, Insightful · on Apple Tells Lawmakers iPhones Are Not Listening In On Consumers (reuters.com)

If Apple is going to deceive you in front of lawmakers. Why not release source without the offending code, and compile and send a different branch with it.

Indeed.

Most of us even hard core open source Linux fans, will not install their applications by compiling the source.
make clean & make & make install

First, even those that do will not audit the entire source. I bet you could insert a function send_personal_data_to_kgb_and_nsa(void) and only a small number of people running ./configure && make -j12 install would notice. If you obfuscated the functionality a bit better, no one would notice :-P

Anyway, even if you did audit the source, that is not sufficient to guarantee that the compiled binary faithfully represents the source files input. To do that, you have to audit the entire compiler/toolchain. And then you have to audit the compiler used to build the compiler.

If you want to verify what is happening, then you should monitor all the wireless traffic your phone sends. Compare it in a quiet environment and one with talking. See if the data sent from the device is enough for conversations.

But the phone has storage. And it has speech-to-text, part of which happens locally. Both of those features mean that, in theory, the phone could record and process the audit and then dribble it out over the network later when you are doing some other legitimate network activity.

So if you REALLY want to be certain, you have to fill up the storage (wait, there could be a secret reserve of a few GB that are not user-accessible) and also monitor the supply lines from the battery to ensure there is no heavy speech processing that might be transcribing it to text :-D

I agree with the sentiment of your post, just like showing that there is no way around having some level of trust in the hardware/software that you use.

Re:What aoubt this one by skids · 2018-06-28 16:33 · Score: 1 · on Words with Multiple Meanings Pose a Special Challenge To Algorithms (theatlantic.com)

You can try it out on a few natural language sentence diagram applications e.g. http://www.link.cs.cmu.edu/cgi... (though that server seems to be unresponsive at the moment.)

Here's one that hits many of the words listed here.

give or take point get set and mark go for good line plays make the dead run a light roll

Slaves or Masters or Mind Children or Friends etc? by Paul+Fernhout · 2018-06-26 02:42 · Score: 1 · on OpenAI Built Gaming Bots That Can Work As a Team With Inhuman Precision (qz.com)

See Hans Moravec's informed speculations like his book "Mind Children": https://www.goodreads.com/book...

Or going beyond that to the nature of consciousness and reality:
http://www.frc.ri.cmu.edu/~hpm...

And see also Vernor Vinge's various writings on a "Singularity".

That said, hedging our bets by making the world a happier and healthier and more resilient place for everyone right now before a singularity is probably not a bad idea given our trajectory out of any singularity may have a lot to do with out path into one.

Re:That is nonsense ... by angel'o'sphere · 2018-05-27 01:16 · Score: 1 · on Oracle Calls Java Serialization 'A Horrible Mistake', Plans to Dump It (infoworld.com)

Because an attacker can tamper with the raw binary object that can still be deserialized, but now has different contents and now will run differently on the other end, in a manner not expected or possibly controlled.
Yeah, and he can use an SQL statement to change a row in the data base ... or a PERL script to change a line in a text file ... what exactly is the difference?
And it has nothing to do with graphs anyway. It can be a single object, only consisting out of primitive types.

Hint: the problem is code, not data. Your explanation makes pretty clear that you don't know what the problem with "simple deserialization" is.

because deserialization ignores all that. the build in standard, yes. However you can augment it.

Preventing the problems the people here get heated up about is super simple:
https://wiki.sei.cmu.edu/confl...
(Original: https://www.ibm.com/developerw...)
Interesting discussion: https://github.com/atomix/cata...

The whole claim that there is a "problem" and the inventors of Java made design mistakes: is clearly wrong! They designed the ObjectInputStream and the way how objects are serialized/deserialize in an easy to adapt and change manner. In other words: they showed great foresight!

Curriculum by Beeftopia · 2018-05-12 12:51 · Score: 2 · on Carnegie Mellon Launches Undergraduate Degree In AI (cmu.edu)

Standard CMU undergrad CS curriculum: https://csd.cs.cmu.edu/academic/undergraduate/bachelors-curriculum-admitted-2017

CMU AI degree curriculum: https://www.cs.cmu.edu/bs-in-artificial-intelligence/curriculum

I dunno. IMO this could be a concentration or a graduate program. I think a classical undergrad CS program would be worth more to a student because it's more generic and thus more widely applicable.

Curriculum by Beeftopia · 2018-05-12 12:51 · Score: 2 · on Carnegie Mellon Launches Undergraduate Degree In AI (cmu.edu)

Standard CMU undergrad CS curriculum: https://csd.cs.cmu.edu/academic/undergraduate/bachelors-curriculum-admitted-2017

CMU AI degree curriculum: https://www.cs.cmu.edu/bs-in-artificial-intelligence/curriculum

I dunno. IMO this could be a concentration or a graduate program. I think a classical undergrad CS program would be worth more to a student because it's more generic and thus more widely applicable.

Re:Please Lord grant me by Gravis+Zero · 2018-05-06 05:15 · Score: 2 · on Devices Supporting Google Assistant Have More Than Tripled In Last Four Months

Sphinx4 is the decoder everyone uses, so feel free to read up on it's design. It does harness parallel processing but I don't think it uses GPGPU.

As for running it on a Pi, you need to limit your vocabulary.

CERT Secure Coding Standards by achowe · 2018-02-25 00:09 · Score: 2 · on Ask Slashdot: How Would You Teach 'Best Practices' For Programmers?

Start with the CERT Secure Coding standards, especially for C programmers it covers many of the "gotchas" to watch out for.

SEI CERT C Coding Standard: Rules for Developing Safe, Reliable, and Secure Systems (2016 Edition)
https://resources.sei.cmu.edu/...

Apparently they them for other languages like C++, Java, Perl.

Re: In before Fractal of Bad Design by jeremyp · 2018-01-01 00:24 · Score: 1, Insightful · on Which Programming Languages Are Most Prone to Bugs? (i-programmer.info)

Which is hardly surprising, since C is just PDP11 assembler tidied up a bit.

Nope.

http://csapp.cs.cmu.edu/3e/doc...

The i386 architecture is not a close copy of the PDP11. You might be thinking of the 68000 which is a more plausible candidate.

C has been ported to most recent processors mainly because it was needed. The fact that it is relatively easy to port gives the lie to your assertion that it is "Macro-11 tidied up".

And, by the way, RISC sort of has displaced CISC. Modern CISC processors like the x86 and later tend to be implemented on top of a RISC core.

Re:so... by Anonymous Coward · 2017-12-22 06:37 · Score: 1 · on Snowden's New App Haven Uses Your Smartphone To Physically Guard Your Laptop (theintercept.com)

Didn't you pay attention? It's on F-Droid. Unless Putin has somehow "On Trusting Trust"-ed F-Droid's compiler, you can calm down.

Even if they did use Ken Thompson's Trusting Trust Attack, there is David Wheeler's Diverse Double-Compiling that can fully counter it.

Re:Git-r-done by Rob+Riggs · 2017-11-22 04:56 · Score: 1 · on Ask Slashdot: How Are So Many Security Vulnerabilities Possible?

Engineering software is about following industry standard best practices, including those provided by orgs such a CERT. Virtually all software engineering BS programs have security related coursework as an elective, not a requirement for graduation. Until that changes, it's going to be a ugly scene.

Re:The bottom line by Wrath0fb0b · 2017-10-09 00:41 · Score: 2 · on Linux Now Has its First Open Source RISC-V Processor (designnews.com)

This and much worse.

The chip that you get from the fab needs to be correspond to the RTL that you sent.

The actual chip ROM that they program has to correspond to the ROM that you want.

The firmware programmed* onto any of the peripherals has to correspond to the firmware you want.

The compiler has to be known not to dynamically insert backdoors when compiling. And no, you cannot verify this by inspecting the compiler source [PDF].

* No, I'll recompile the open-source firmware and reprogram it. Besides the fact that you will be recompiling on an untrusted system, how do you know that are you actually reprogramming it? Because the chip reported success? Maybe their firmware allows itself to be reprogrammed but patches the incoming firmware in a few key places as it comes in?

Re: Hillary spent $1.2 billion... by Ol+Olsoc · 2017-10-03 12:50 · Score: 1 · on Facebook Says 10 Million US Users Saw Russia-linked Ads (reuters.com)

Yeah, he won the clown car race with 16 (or was it 17) candidates by a healthy margin by differentiating himself. But polling throughout the race had him at unprecedented unfavorability ratings, with only Clinton able to even remotely complete. He polled worse than lice and Nickelback.

Also, among the groups of independents, Democrats, and Republicans, Republicans are the smallest group, and only a small subset of them voted in the primaries.

Which is why there are many questions yet unanswered. Without any mention of any other nations, American voting machines are notoriously easy to hack https://fossbytes.com/defcon-2... http://thehill.com/policy/cybe... 2012 - https://www.csmonitor.com/USA/... 2011 - https://www.salon.com/2011/09/...

2005 - https://arstechnica.com/uncate...

This is not fake news, this is not remotely deniable. I knew that the voting manchines were Internet of things easy to hack almost 15 years ago. http://euro.ecom.cmu.edu/peopl...

There have been some strange happenings like in the 2012 election where Carl Rove had a public meltdown when he refused to concede the Ohio vote, expecting some districts to come through and push the Republican candidate over the edge and win Ohio. It was interesting in the aspect that Ohio had a strange even in a previous election where the exit polls gave the state to a Democrat, but the vote tally did not. The Republican response was the typical Good Republican Voters screwing with the Media. But that's just a side story, and I digress.

The big question is - with the machines having terrible security, why the hell would a tech-savvy nation not hack and alter the results to mess with an adversary nation or to put in a person they had sway with?

Re:Auto companies, patents, etc by 0100010001010011 · 2017-09-21 04:23 · Score: 2 · on Tesla Is Working With AMD To Develop Its Own AI Chip For Self-Driving Cars (cnbc.com)

The tech companies are going to be in for an entertaining world of hurt if they think they can just show up and start cranking out products the way they've always done it.

Automotive, industrial, aerospace, rail and other 'life and limb' companies have done things their own way for a while for a reason. We have functional safety standards that have no 'tech company' equivalent (that I've seen). ISO 26262, IEC 61508, DO-178C, ASIL A-D, etc. From what I've found Intel and AMD don't have any chips that meet those standards.

Your phone crashes you file a bug report. Grandma crashes and dies and it's not just 'file a bug report'. The German automakers have been working on all of this stuff for a while. In grad school years ago we had some researchers from VW come in and show off all of their collision avoidance designs. I rented cars in Germany that had the auto-stop feature that didn't show up in the states until years later.

They're not just patenting stuff, they're implementing it. The difference between them and Tesla is they're very reserved in what they say it can and can't do and don't call their shots before they make them. Tesla drives up hype says what they will do and hopes they can deliver.

You think Cummins and Benz heard about the Tesla truck announcement and threw together a full prototype in a month to beat them to the punch? People are naive if they don't think that everyone is working on the exact same self driving features Tesla is. They're just not as vocal about it.

If you want to know what those companies are and when they got their start, look for the logos plastered all over the DARPA 2004/2005 vehicles. It's not like they grabbed their $1M, split it up, patted themselves on the back and forgot about the technology. All of those grad students got hired on. Startups that formed out of it got bought up by bigger players. We've all been working on this stuff, together, behind the scenes getting it right and testing it off line before we brag to the local newspaper.

Reflections On trusting trust by goombah99 · 2017-09-21 02:07 · Score: 5, Interesting · on The CCleaner Malware Fiasco Targeted at Least 20 Specific Tech Firms (wired.com)

If you never read this essay here it is
https://www.ece.cmu.edu/~gange...

Malware is slowly moving up the software chain to where this is becoming increasingly plausible.

Re:Yet another argument for source code by ckatko · 2017-09-20 01:43 · Score: 1 · on Popular Steam Extension 'Inventory Helper' Spies On Users, Says Report (windowsreport.com)

Slashdot ate the rest of my damn comment!

Ken Thompson's Reflections on Trust showed back in the 80's that you can have "clean" source code, and a tainted self-compiling compiler that produces tainted code from completely clean code.

5) Source code != security. Open source means it's easier to verify the SOURCE. It's not magically easy to verify the BINARY.

[PDF]

https://www.ece.cmu.edu/~gange...

Re:Yet another argument for source code by Anonymous Coward · 2017-09-20 01:14 · Score: 0 · on Popular Steam Extension 'Inventory Helper' Spies On Users, Says Report (windowsreport.com)

There's an extremely simple surefire way to guarantee that the binary you're running was built exactly from that source code: compile it yourself.