Re: mprotect abuse in slim

---

• From: Valdis.Kletnieks@xxxxxx
• Date: Tue, 09 Jan 2007 14:27:19 -0500

---

On Mon, 08 Jan 2007 17:38:25 EST, Mimi Zohar said:

revoked. Based on previous comments on lkml, we understand
that this is not really possible in general, so SLIM only
attempts to revoke access in certain simple cases.

Which, unfortunately, creates incredibly brittle code when some attacker
reads the SLIM source code and finds a way to force the non-simple case
you ignore.

This is an area where you really need to do it *right*, or not at all.

Attachment: pgp2QGKArfOWd.pgp
Description: PGP signature

---

• Follow-Ups:
  • Re: mprotect abuse in slim
    • From: Mimi Zohar

• References:
  • Re: mprotect abuse in slim
    • From: Mimi Zohar

• Prev by Date: Re: [PATCH -MM] e1000: rewrite hardware initialization code
• Next by Date: [IPv6] PROBLEM? Network unreachable despite correct route
• Previous by thread: Re: mprotect abuse in slim
• Next by thread: Re: mprotect abuse in slim
• Index(es):
  • Date
  • Thread

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)