Well, first of all, that's interesting - I didn't know any PPC shellcode had ever been publically released. Mine is a bit shorter than his because I took a different approach to avoiding NULL bytes, and I also had a different set of character restrictions to deal with. I handled the caches explicitly instead of counting on luck to get them right; my experience was that the cache would NOT get them right. While I rewrote the whole thing, I owe Anthony Tong a big thank-you for the initial attempt at shellcode that I based mine on.
There were a bunch of other interesting aspects to the exploit itself; I'll write it all up in a week or two when I get back from vacation.
As for DJ-Serra0... I can tell you exactly what he did. I made a stupid mistake when I left myself a way to access the machine, and he found my stupid mistake. He hacked my carelessness, not crack.linuxppc.org.
Slashdot Mirror
For various reasons, I own the domains "false.org" and "them.org". I get the most amazing collection of other people's mail... for instance:
faust@false.org
me@them.org
us@them.org
I get, on average, a half dozen spam messages to me a day; I also get, on average, about thirty to other people's fake email addresses at my domains.
Well, first of all, that's interesting - I didn't know any PPC shellcode had ever been publically released. Mine is a bit shorter than his because I took a different approach to avoiding NULL bytes, and I also had a different set of character restrictions to deal with. I handled the caches explicitly instead of counting on luck to get them right; my experience was that the cache would NOT get them right. While I rewrote the whole thing, I owe Anthony Tong a big thank-you for the initial attempt at shellcode that I based mine on.
There were a bunch of other interesting aspects to the exploit itself; I'll write it all up in a week or two when I get back from vacation.
As for DJ-Serra0... I can tell you exactly what he did. I made a stupid mistake when I left myself a way to access the machine, and he found my stupid mistake. He hacked my carelessness, not crack.linuxppc.org.