Cambridge Researcher Breaks OpenBSD Systrace

Posted by kdawson on Thursday August 9, 2007 @02:19AM from the without-a-trace dept.

An anonymous reader writes "University of Cambridge researcher Robert Watson has published a paper at the First USENIX Workshop On Offensive Technology in which he describes serious vulnerabilities in OpenBSD's Systrace, Sudo, Sysjail, the TIS GSWTK framework, and CerbNG. The technique is also effective against many commercially available anti-virus systems. His slides include sample exploit code that bypasses access control, virtualization, and intrusion detection in under 20 lines of C code consisting solely of memcpy() and fork(). Sysjail has now withdrawn their software, recommending against any use, and NetBSD has disabled Systrace by default in their upcoming release."

3 of 194 comments (clear)

Min score:

Reason:

Sort:

so much for... by Fyre2012 · 2007-08-09 02:37 · Score: 0, Flamebait

...Only two remote holes in the default install, in more than 10 years!

It's unfortunate too tho, considering that OpenBSD is heralded as one of the most secure *nix's around. Looks like it's patch time for many.

--
This is not the greatest .sig in the world, no. This is just a tribute.
Re:"cambrige researcher"... by chrisgagne · 2007-08-09 04:33 · Score: 1, Flamebait

He's probably one of the *only* FreeBSD hackers.
Re:SELinux and the same ... by DrSkwid · 2007-08-09 04:44 · Score: 0, Flamebait

> I know for the TrustedBSD tools it would be minimal due to their strict code checking policies

I hope that works out for them because "Secure by default" and "Unbreakable" are amusing rhetoric.

--
There are places where the networks are not touching,and there are places where they are-Boeing's Lori Gunter