Post AQIsvKJRc0r6WUaFSy by mpts@mastodon.social
(DIR) More posts by mpts@mastodon.social
(DIR) Post #AQIsvJ840q9qquFe5Y by kubikpixel@chaos.social
2022-12-05T13:35:23Z
0 likes, 0 repeats
Oha mist aber auch, bis jetzt galt ja FreeBSD als sehr sicheres Betriebssystem - zugegeben sofern mensch keine Scheunentore offen lies.»Sicherheitslücke: Codeschmuggel mit Ping in FreeBSD:Angreifer könnten FreeBSD mit manipulierten Ping-Anfragen zum Ausführen untergejubelten Schadcodes bringen. Aktualisierungen stehen bereit.»😈 https://www.heise.de/news/Sicherheitsluecke-Codeschmuggel-mit-Ping-in-FreeBSD-7366590.html--#freebsd #bsd #security #it #update #itsecurity #infosec #ping
(DIR) Post #AQIsvJnBXx3EuRUUBU by zem@conesphere.social
2022-12-05T15:27:52Z
0 likes, 0 repeats
@kubikpixelIt can always happen. This is, by the way, the reason why its sister os openbsd is relinking its kernel on each boot as far as I understand.
(DIR) Post #AQIsvKJRc0r6WUaFSy by mpts@mastodon.social
2022-12-05T17:10:14Z
0 likes, 0 repeats
@zem @kubikpixel Ping is running in a capability mode so the amount of damage the attacker can do is very limited.
(DIR) Post #AQIsvKsXVWvcHL0HAW by feld@bikeshed.party
2022-12-05T17:37:15.622993Z
0 likes, 0 repeats
@mpts @zem @kubikpixel everyone i've talked to so far has said that it can't do anything because of cap :shrug:
(DIR) Post #AQJ4LMCsI91XQF7qnQ by zem@conesphere.social
2022-12-05T18:11:31Z
0 likes, 0 repeats
@feldit is one security barrier which is breached. I was not even aware that the ping userland utility was meant, I thought it was icmp at first. Do you know how deep that cap drop goes? Is it similar to pledge() ? @kubikpixel @mpts
(DIR) Post #AQJ4LMnk54VxGaNIGG by feld@bikeshed.party
2022-12-05T19:45:13.809428Z
0 likes, 0 repeats
@zem @kubikpixel @mpts yes it was the ping utility not ICMP in the kernelThe super simple explanation is that FreeBSD's capsicum is functionally equivalent to pledge but it's much harder to implement into existing software.