Re: DefCon lecture BSD Kern Vulns

2017-08-09 Thread rollingbits (Lucas)
-- Forwarded message -- From: "rollingbits (Lucas)" <rollingb...@gmail.com> Date: Aug 9, 2017 9:36 PM Subject: Re: DefCon lecture BSD Kern Vulns To: "Dag-Erling Smørgrav" <d...@des.no> Cc: On Jul 31, 2017 12:50 PM, "Dag-Erling Smørgrav&quo

Re: DefCon lecture BSD Kern Vulns

2017-08-09 Thread Ørjan Tønder
If one are too fix all of what Ilja van Sprundel pointed out here we need too put aside difference and work along side with each other, the newbie and the professor needs too talk the same language. It should't be this way that a bug that has been adressed two years ago get's no attention at all,

Re: DefCon lecture BSD Kern Vulns

2017-08-07 Thread Ian Smith
On Tue, 8 Aug 2017, Dewayne Geraghty wrote: > > Indeed, there are times when it's best to say nothing :) ___ freebsd-security@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to

Re: DefCon lecture BSD Kern Vulns

2017-08-07 Thread Dewayne Geraghty
___ freebsd-security@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"

Re[4]: DefCon lecture BSD Kern Vulns

2017-08-07 Thread Mail Lists via freebsd-security
>Sunday, August 6, 2017 10:17 PM UTC from Justin Coffman via freebsd-security >: > >> >Monday, July 31, 2017 4:20 PM UTC from Dag-Erling Smørgrav >> < d...@des.no >: >> > >> >Big Lebowski < spankthes...@gmail.com > writes: >> >> Dag-Erling Smørgrav <

Re: DefCon lecture BSD Kern Vulns

2017-08-07 Thread Michelle Sullivan
Mail Lists wrote: Monday, July 31, 2017 4:20 PM UTC from Dag-Erling Smørgrav : Big Lebowski > writes: > Dag-Erling Smørgrav > writes: > > There are decades of history

RE: Re[2]: DefCon lecture BSD Kern Vulns

2017-08-06 Thread Justin Coffman via freebsd-security
> >Monday, July 31, 2017 4:20 PM UTC from Dag-Erling Smørgrav > : > > > >Big Lebowski < spankthes...@gmail.com > writes: > >> Dag-Erling Smørgrav < d...@des.no > writes: > >> > There are decades of history here of which you are clearly unaware. > >> > You may have the best of

Re[2]: DefCon lecture BSD Kern Vulns

2017-08-06 Thread Mail Lists via freebsd-security
>Monday, July 31, 2017 4:20 PM UTC from Dag-Erling Smørgrav : > >Big Lebowski < spankthes...@gmail.com > writes: >> Dag-Erling Smørgrav < d...@des.no > writes: >> > There are decades of history here of which you are clearly unaware. >> > You may have the best of intentions, but

Re: DefCon lecture BSD Kern Vulns

2017-07-31 Thread Michelle Sullivan
Dag-Erling Smørgrav wrote: Michelle Sullivan writes: People should talk between, and maybe people should put security and co-operation before pride and empires... [...] There are decades of history here of which you are clearly unaware. Your may have the best of

Re: DefCon lecture BSD Kern Vulns

2017-07-31 Thread Dag-Erling Smørgrav
Michelle Sullivan writes: > People should talk between, and maybe people should put security and > co-operation before pride and empires... [...] There are decades of history here of which you are clearly unaware. Your may have the best of intentions, but nothing good will

Re: DefCon lecture BSD Kern Vulns

2017-07-31 Thread Michelle Sullivan
Dag-Erling Smørgrav wrote: Dirk Engling writes: have those findings officially been reported? Is someone working on them? Speaking as a secteam member but not on behalf of so@, we are aware of these issues but did not get sufficient advance notice to fix them in time

Re: DefCon lecture BSD Kern Vulns

2017-07-28 Thread Yonas Yanfa
On 07/28/2017 16:21, Luke Crooks wrote: I was sent a link earlier, seems to work... https://www.pdf-archive.com/2017/07/28/defcon-25-ilja-van-sprundel-bsd-kern-vulns/defcon-25-ilja-van-sprundel-bsd-kern-vulns.pdf Some great work and an enjoyable read. On 28 Jul 2017 21:02, "Yonas Yanfa"

Re: DefCon lecture BSD Kern Vulns

2017-07-28 Thread Luke Crooks
I was sent a link earlier, seems to work... https://www.pdf-archive.com/2017/07/28/defcon-25-ilja-van-sprundel-bsd-kern-vulns/defcon-25-ilja-van-sprundel-bsd-kern-vulns.pdf Some great work and an enjoyable read. On 28 Jul 2017 21:02, "Yonas Yanfa" wrote: > On 07/28/2017 08:08,

Re: DefCon lecture BSD Kern Vulns

2017-07-28 Thread Yonas Yanfa
On 07/28/2017 08:08, Dirk Engling wrote: Out of curiosity: have those findings officially been reported? Is someone working on them? https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf If not, shall I extract them? That link

Re: DefCon lecture BSD Kern Vulns

2017-07-28 Thread Joey Kelly
I haven't read the paper yet, and I'm surely not up on things enough to know what I'm looking at, but are these 0-days? If so, do they store them up so they can present at defcon? --Joey > Out of curiosity: > > have those findings officially been reported? Is someone working on them? > >

DefCon lecture BSD Kern Vulns

2017-07-28 Thread Dirk Engling
Out of curiosity: have those findings officially been reported? Is someone working on them? https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf If not, shall I extract them? Maybe we should start an "audit a subsystem" week ;)