Slashdot Mirror

← Back to Stories (view on slashdot.org)

Remote Exploit Discovered for OpenBSD

Posted by samzenpus on from the patch-it-up dept.

An anonymous reader writes "OpenBSD is known for its security policies, and for its boast of "only one remote exploit in over 10 years". Well, make that two, because Core Security has found a remotely exploitable buffer overflow in the OpenBSD kernel. Upgrade your firewalls as soon as possible."

9 of 338 comments (clear)

  1. two by mastershake_phd · · Score: 0, Troll

    2 aint bad. Whats Microsoft at for the decade, 2000?

    --
    Libertarian Leaning Political Discussion Forum.
  2. Re:Advisory Timeline by QuantumG · · Score: 0, Troll

    Ok. I'm done talking to you idiots now.

    --
    How we know is more important than what we know.
  3. If only.... by leereyno · · Score: 0, Troll

    If only OpenBSD were suitable for anything beyond a firewall.

    --
    Muslim community leaders warn of backlash from tomorrow morning's terrorist attack.
  4. Re:Advisory Timeline by toadlife · · Score: 0, Troll

    No. He won and you are the idiot.

    --
    I don't always use unix-like operating systems; but when I do, I prefer FreeBSD.
  5. Netcraft confirms... by axus · · Score: 0, Troll

    Somebody please paste it already

  6. The weak link again. Clean up your net. by twitter · · Score: 0, Troll

    does not, in any way, mean "far away," as the attacker has to be able to inject fragmented IPv6 packets, which is extremely hard to control (impossible?) from the other side of a layer 3 device.

    If that's true, they nail the Windoze machine on the other side and blast you from your own DMZ. Once again, your network is only as strong as it's weakest link. This is why I have no Windoze in my network.

    --

    Friends don't help friends install M$ junk.

  7. How reduced a scope is one in four machines? by twitter · · Score: 0, Troll

    So nobody from the net can crack your machine, they must already me on your local net. This greatly reduces the scope of this attack.

    That's only true if your local network is not filled with an OS that has a 1/4 botnet ownership rate. When your own machines can be used against you, all bets are off.

    --

    Friends don't help friends install M$ junk.

  8. Re:The weak link again. Clean up your net. by twitter · · Score: 0, Troll

    Would you mind explaining to the rest of us where Microsoft Windows is a specific requirement for any of the stated conditions?

    Sure, I can do that. It's not really a requirement, it just makes it easy to do and expands the scope out again. Of course, there's not much of a reason to nail the OpenBSD machine if you already own the clients that enter the data in the first place. I suppose the point of all of this is to worry about and eliminate the biggest problems first. Things like OpenBSD are broken once a decade, while Windoze is never fixed.

    It's nice to see you back Kieth.

    --

    Friends don't help friends install M$ junk.

  9. Re:The weak link again. Clean up your net. by twitter · · Score: 0, Troll

    You just replied to me with a link to the post I was replying to in the first place. Brilliant!

    Sorry, but no loss you read all of my posts anyway. Keep reading.

    --

    Friends don't help friends install M$ junk.