jm + freebsd + security   2

Analysis of PS4's security and the state of hacking
FreeBSD jails and Return-Oriented Programming:
Think of [Return-Oriented Programming] as writing a new chapter to a book, using only words that have appeared at the end of sentences in the previous chapters.
ps4  freebsd  jails  security  exploits  hacking  sony  rop  return-oriented-programming 
august 2015 by jm
FreeBSD breaks its kernel RNG for 4 months
If you are running a current kernel r273872 or later, please upgrade
your kernel to r278907 or later immediately and regenerate keys.
I discovered an issue where the new framework code was not calling
randomdev_init_reader, which means that read_random(9) was not returning
good random data. This means most/all keys generated may be predictable and must be
regenerated.
crypto  freebsd  security  lols  rng  randomness  bsd 
february 2015 by jm

Copy this bookmark:



description:


tags: