OpenBSD kernel relinking is not transactional and a local exploit exists

Image

Image alternative text

irdc, 11 months ago

Additionally, OpenBSD leaks the state of the pseudorandom number generator to predictable locations on disk and in system memory at a fixed point during every start up and shutdown procedure.

…so, yeah, anyway…

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

I_Am_Jacks_____, 11 months ago

So the exploit is that root can modify the files used to relink the kernel? Root can modify any files... what's the point?

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Federation

Status:

On | Off

Instances:

/m/openbsd@lemmy.ml

Threads (31)

Microblog (0)

All Content

People

Magazines

Collections

Thread

hucste

@hucste@lemmy.ml

Added: 11 months ago
Online: -
Ratio: 0

Magazine

openbsd

@openbsd@lemmy.ml

useful resources:

Developer blogs:

Ressources:

si3t.ch/ah/en/

Created: 11 months ago
Owner: ernest
Subscribers: 8
Online: -

Moderators

ernest

Active people

I’m looking forward to reading when @jcs tries #OpenBSD on the ARM thinkpad that Lenovo announced

1 day ago to random

If you want to talk about (self) hosting with #OpenBSD, fell free to join the mailing list I just made: https://si3t.ch/log/2024-05-10-ah-mailing-list.txt #selfhost

14 days ago to random

With Microsoft pushing their supercharged spyware soon, today is - like any other day - perfect to make the switch to #OpenBSD. The sane, well-documented, secure OS that isn't bloated and doesn't spy on you....

3 days ago to random

"Linux Inventor Says He Doesn’t Believe in Crypto"...

4 days ago to random

Add comment