lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <alpine.BSF.2.00.1306212033100.1401@wojtek.tensor.gdynia.pl> Date: Fri, 21 Jun 2013 20:33:24 +0200 (CEST) From: Wojciech Puchar <wojtek@...tek.tensor.gdynia.pl> To: Hunger <hunger@...ger.hu> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :) > $ uname -a > FreeBSD fbsd91x64 9.1-RELEASE FreeBSD 9.1-RELEASE #0 r243825: Tue Dec > 4 09:23:10 UTC 2012 > root@...rell.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64 > $ id > uid=1001(hunger) gid=1002(hunger) groups=1002(hunger) > $ gcc fbsd9lul.c -o fbsd9lul > $ ./fbsd9lul > FreeBSD 9.{0,1} mmap/ptrace exploit > by Hunger <fbsd9lul@...ger.hu> > # id > uid=0(root) gid=0(wheel) egid=1002(hunger) groups=1002(hunger) > # > got fixed. and in the same time - geli got f...d up. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists