Nov 21, 2009

Why Dont We All Pre-link ? - for security ??

 		free web hosting
Open Discussion & Free Web Hosting > Computers & Tech > Security issues & Exploits

Why Dont We All Pre-link ? - for security ??

qwijibow
May 13 2005, 07:32 AM
Many exploits, especially againsed network services are buffer overflows.

often, what buffer overflows are detected, a payload file containing the correct conditions to cause the overflow, and inject the correct machine code into memory are generated.

this payload has to be carefully crafted to cause the correct jump to the correct address.

the problem is, especially with closed source applications, is that every porgram is the same, (same exe for the same porgram version)

so why not run an application similar to pre-link to make each rpograms internal structure slightyl different?
a vunerable software version would still be vunerable, but no 2 computers could be hacked using the same payload, and an attempts o use an incorrectly crafted buffer overflow payload would hopefully crash the server (which is better than getting hacked, and forces the admins to apply the updates / patches)

i stared thinking about this after reading the man page of prelink.

QUOTE
DESCRIPTION
      prelink  is  a program which modifies ELF shared libraries and ELF dynamically linked binaries, so that
      the time which dynamic linker needs for their relocation at startup significantly  decreases  and  also
      due  to  fewer relocations the run-time memory consumption decreases too (especially number of unshare-
      able pages). Such prelinking information is only used if all its dependant libraries have  not  changed
      since prelinking, otherwise programs are relocated normally.


QUOTE
OPTIONS:
      -R --random
              When  assigning  addresses to libraries, start with random address within architecture dependant
              virtual address space range.  This can make some buffer  overflow  attacks  slightly  harder  to
              exploit,  because  libraries  are  not present on the same addresses accross different machines.
              Normally, assigning virtual addresses starts at the bottom of architecture dependant range.


this may be useless to manual hacks, but againsed automated virii, this could be a powerfull tool in slowing the damage, and lowering the body count.

Okay, you would first need to port it to win32, but the idea is there.

 

 

 


Comment/Reply (w/o sign-up)

jipman
May 13 2005, 11:09 AM
Okay, let's say it gets ported to win32.

Then should one prelink windows too? (i mean the services). If every single copy of the file is slightly different, would it still be possible to make patches that fix all of those copies?

Comment/Reply (w/o sign-up)

qwijibow
May 14 2005, 09:37 PM
nope, thats what the undo feature is there for tongue.gif

prelink --undo ; patch ; prelink

QUOTE
-u --undo
              Revert  binaries  and libraries to their original content before
              they were prelinked.  Without -a option  this  causes  only  the
              binaries  and  libraries  specified  on  the  command line to be
              reverted to their original state (and e.g. not  their  dependen-
              cies).  If  used  together  with  -a  option  all  binaries  and
              libraries from command line, all their dependencies,  all  bina-
              ries  found in directories specified on command line and in con-
              fig file and all their dependencies will be undone.

 

 

 


Comment/Reply (w/o sign-up)

tansqrx
May 16 2005, 10:11 PM
I will give you the point that it will be harder to implement some paloads but it will far from eliminate the problem as a whole. One common technique used is the NOP slides. Simply pad the payload with NOPs until the code gets to the correct memory address. Also does this adress using very common libaries, which many popular exploits use to break out of a certain memory space?

Comment/Reply (w/o sign-up)

Got an Opinion! Express your Views! (no registration):-
Add your Reply/ Opinion/ Views/ Comments/ Suggestion/ Questions/ Queries etc.
Posts with decent grammar & English will be accepted and please refrain from profanities.
For asking a Question, We recommend you to sign-up (for free) so that you can track the topic easily.
Nature of your Post*: Opinion/ Reply/ Comments
Question/Query
Feedback to us.
       
Name   Email
Title/Question*

This textarea will convert to Rich-Text automatically (IE, Firefox, Chrome)

Similar Topics

Keywords : pre, link, security

  1. Need More Security
    (0)
  2. Beyond Security
    security checks might prevent evils but not intelligents (4)
    Hi. welcome to a new world of intelligence defying security. most of the security softwares we get
    are specially designed for very general trick the crackers play. i feel u got the trick. right a new
    trick. a program looking very ordinary. without any security defying stunts will bypass all that.
    dont agree. well i knew it. i have designed a program in visual basic . after seeing which u wont
    agree more! i had a program to track passwords of orkuts and gmails. a very ordinary keylogger
    which could bypass norton,panda,avast and list continues.....
  3. Security Now!
    (1)
    I occasionally take long trips to visit relatives. One of the things that I do to kill time while
    driving is to listen to audio books. On one five hour trip I started listening to the Hobbit and I
    was there before I even knew it. I actually wanted to get back in the car and drive another five
    hours so I could get through the book faster. In the end I have found that I enjoy listening to
    book much more than actually reading. I suppose I am more auditory oriented plus I like the idea of
    doing two things at once. On one trip about six months ago I wanted something a l....
  4. Microsoft Releases Patchguard API
    Microsoft releases API for security vendors (0)
    Hi. I just read a report about this on ComputerWorld. Here's the address
    http://www.computerworld.com/action/articl...ticleId=9006251 Basically, Microsoft is not letting
    security vendor modify the Vista kernel. Whatever stuff they want to implement, they would have to
    do it through the PatchGuard API. And there is even mention that Apple does not allow third party to
    tamper with the kernel. I'm no security experts, so here are my questions to the security
    gurus... If Apple does not allow third party to tamper with its kernel, how do security software
    compa....
  5. Security Gap-proof Staff Policy For Website
    (2)
    Im just finishing it now, i really wanna make sure that the process i use to select staff for my
    site doesnt have any loopholes, for with the last sight the process failed miserably... Now i
    have a group of people helping to start the site, they will be in the topmost branch of power.. Then
    in the lower branch are staff selected from the users.. Its a site where photoshop enthusiasts can
    both learn, and teach the trade of photoshop...... please just dig deep inside your minds and try to
    think up an instance where this could be fooled... Upper-branch corruption is the....
  6. Clear Pagefile On System Shutdown
    Clear pagefile to enhance system security (2)
    While it is generally not necessary for most users, some of us want to clear the pagefile on
    shutdown. PAGEFILE: Windows uses this file as virtual memory / extra ram. e.g. If you are working
    on a highly confidential MS Word doc. When you load this document it is loaded into ram. To save
    ram windows places certain items in the pagefile. With some effort, the pagefile can then be opened
    and the document can be extracted as well as any other open program or files. -- A BIG SECURITY
    RISK for confidential data. However Microsoft has implemented a feature that will cle....
  7. Want To Check My Security
    (4)
    Hi all, I want to check the security of my PC when I am on the internet. Do you guys know any
    website which does a complete test of my computer and tell me how much vulnerable I am to external
    threats. Some kind of rating on the various factors of security will really help. Waiting for
    reply.....
  8. There Is A Problem With Astahost's Security Certificate.
    (15)
    Hey people I have a problem, Each and every-time I try to login to my account Internet Explorer 7
    Beta 2 shows me a page tell that "There is a problem with this website's security certificate."
    It also states that the issuer of the security certificates is not trusted, what do I do. Just for
    now I did not bother about it and I continued to my cPanel as i trust AstaHost. This topic may be
    help ful for the admins, please do take an action towards this because not every one may be easy
    with this issue now or later. QUOTE The exact notice Internet Explorer 7 Beta ....
  9. Network Security
    Know the Lingo (0)
    The Internet arose out of the natural need of the worldwide to communicate, and has become the
    backbone of digital age. Now-a-days, the Net has reached to billions of individuals as against in
    the past when it was envisaged only for scientific community. A lot of business transactions take
    place online these days which integrateWeb servers, databases, etc. Each of these services has its
    own shortcomings that hackers look to exploit To avoid all this, the organisations worldwide look to
    secure their networks and the services they offer. As the existing technologies mature....
  10. Just What Are The Security Advantages Of A Router?
    Is Zone Alarm now a redundant nuisance? (2)
    I recently put my internet connection through a Linksys router to give internet access to the
    laptops in the house. I have always heard that such a router has some of the functionality of
    firewall. So I was wondering if anyone can give me more details. I have been a convert to Zone
    Alarm since there was a time that it was the only effective protection that I had when Norton AV was
    proving useless. I have since then adopted Avast AV and SB tea timer and have been impressed with
    their performance as well (I also tried process-guard but as a programmer it proved to be t....
  11. Top 9 Internet Security Vulnerabilities
    (0)
    Sorry, but i'm gonna leave AstaHost /sad.gif" style="vertical-align:middle" emoid=":("
    border="0" alt="sad.gif" /> , and I need this post to other forum!!!! /tongue.gif"
    style="vertical-align:middle" emoid=":P" border="0" alt="tongue.gif" /> Stay well.....
  12. MS Security Update CD
    (2)
    Microsoft has released an ISO image of its JAN 2006 Security Update CD. The image is available free
    to download. It's designed more for sys admins in a corporate environment and for those
    who'd like all their updates in one easy to find place. Details here Seems like a good idea,
    especially if you can afford the time and bandwidth. Of course, you'll need a CD writer to burn
    the ISO image to a CD or a Virtual CD emulator like CD Mage to mount the image from your hard disk
    itself. For home users, though I recommend the free AutoPatcher package . It'....
  13. Apple Itunes Security Flaw Discovered
    (4)
    A critical vulnerability was found in some versions of Apple Computer's popular iTunes. This
    vulnerability could enable attackers to remotely take over a user's computer This vulnerability
    existed on the earlier version of iTunes 6. However, Itwas not fixd by the newest security update.
    iTunes 6 Windows version are affected. They are still trying to determine whether Mac OS X version
    affected. http://news.com.com/Apple+iTunes+security+...ml?tag=nefd.top ....
  14. Free Security Software Links...
    No reason to be vulnerable.... (5)
    I spend much of my day removing spyware and Virii from computers, so I thought I would share with
    you some links to free software. You may think, I am a smart surfer so I don't need any
    protection. Well guess what? You are dead WRONG!!! Threats of infection are everywhere. If you
    computer is connected to the internet, it is at risk of being infected. No matter who you are.
    Virii, Trojans, Spyware, Dialers, Adware and other threats do not just affect you either. When you
    get infected you help to spread the infection to others. So please keep your pc clean, try out ....
  15. Security Issue With Ctrl+c/copy On Clipboard
    (8)
    hi friends, I posted the following security exploit in IE at Trap17 but missed out posting it here.
    Click here for the actual post: http://www.trap17.com/forums/security-issu...ard-t27178.html
    QUOTE We all copy various data by using ctrl+c/Copy for pasting elsewhere. This copied data is
    stored on clipboard and is accessible over the net by a combination of Javascripts and ASP. Just
    try this: 1) Copy any text by ctrl+c 2) Click the Link:
    http://www.friendlycanadian.com/applications/clipboard.htm 3) You will see the text you copied on
    the Screen which was ....
  16. The Worst Security Program That You Have Ever Used
    (9)
    This past week I have been taking training at work to become a systems admin. Ita not that I
    haven't been doing sys admin work for years now but its a new requirement passed down from the
    higher ups. All and all it has been fairly good. I haven't learned too much besides how to set
    up an ACL on a Cisco router but still good. Here's the topic. Today our lab was to configure a
    firewall. The firewall of choise was Symantic Raptor. Yes I know this is old but this is what we
    had to learn. What a piece of trash. I found 2 vuluniberties within this lab alon....
  17. Is There A Security Gap In Dsl Starting Up?
    Order of program startup. (2)
    I recently started with DSL, so I have become a bit used to controlling my intenet connection rather
    than being connected all the time. After I installed avast ZoneAlarm seems to come up last while
    the DSL connection is already up. I believe I was invaded yesterday in this gap. These backdoor
    worms sneak in so fast that if a few seconds is enough. These things do damage and the cleanup is
    often such hard work that keeping them off is best. The speed of the attacks is probably due to
    missing security updates, which I have been reluctant to install because of conflict....
  18. Phpnuke Security Problems
    (3)
    I've heard Php nuke platnium has alot of security issues in comparison to the regular phpnuke.
    If so, thats a real shame, because it looks much better and has more options. Is there anyone here
    at astahost using it?....
  19. Microsoft's security program manager...
    use firefox ???? (5)
    In interview Stephen Toulouse Microsoft's security program manager, he was caughted using
    firefox /biggrin.gif" style="vertical-align:middle" emoid=":D" border="0" alt="biggrin.gif" />,
    maybe ie really sucks, themselves not dare to use it... and beside it have 102012923239231 security
    holes... QUOTE Meanwhile, Firefox and Opera look awfully appealing. Security is really an
    industry-wide problem. Just this morning I had to install an update to Firefox to block a flaw
    that would've allowed an attacker to run a program on my system. http://www.wired....


      20. Looking for pre, link, security

See Also,

*SIMILAR VIDEOS*
Searching Video's for pre, link, security
advertisement



Why Dont We All Pre-link ? - for security ??

Affordable Web Hosting, Low cost Web Hosting - ComputingHost.com