qwijibow
May 13 2005, 07:32 AM
Many exploits, especially againsed network services are buffer overflows. often, what buffer overflows are detected, a payload file containing the correct conditions to cause the overflow, and inject the correct machine code into memory are generated. this payload has to be carefully crafted to cause the correct jump to the correct address. the problem is, especially with closed source applications, is that every porgram is the same, (same exe for the same porgram version) so why not run an application similar to pre-link to make each rpograms internal structure slightyl different? a vunerable software version would still be vunerable, but no 2 computers could be hacked using the same payload, and an attempts o use an incorrectly crafted buffer overflow payload would hopefully crash the server (which is better than getting hacked, and forces the admins to apply the updates / patches) i stared thinking about this after reading the man page of prelink. QUOTE DESCRIPTION
prelink is a program which modifies ELF shared libraries and ELF dynamically linked binaries, so that
the time which dynamic linker needs for their relocation at startup significantly decreases and also
due to fewer relocations the run-time memory consumption decreases too (especially number of unshare-
able pages). Such prelinking information is only used if all its dependant libraries have not changed
since prelinking, otherwise programs are relocated normally.
QUOTE OPTIONS:
-R --random
When assigning addresses to libraries, start with random address within architecture dependant
virtual address space range. This can make some buffer overflow attacks slightly harder to
exploit, because libraries are not present on the same addresses accross different machines.
Normally, assigning virtual addresses starts at the bottom of architecture dependant range.
this may be useless to manual hacks, but againsed automated virii, this could be a powerfull tool in slowing the damage, and lowering the body count. Okay, you would first need to port it to win32, but the idea is there.
Reply
jipman
May 13 2005, 11:09 AM
Okay, let's say it gets ported to win32. Then should one prelink windows too? (i mean the services). If every single copy of the file is slightly different, would it still be possible to make patches that fix all of those copies?
Reply
qwijibow
May 14 2005, 09:37 PM
nope, thats what the undo feature is there for  prelink --undo ; patch ; prelink QUOTE -u --undo
Revert binaries and libraries to their original content before
they were prelinked. Without -a option this causes only the
binaries and libraries specified on the command line to be
reverted to their original state (and e.g. not their dependen-
cies). If used together with -a option all binaries and
libraries from command line, all their dependencies, all bina-
ries found in directories specified on command line and in con-
fig file and all their dependencies will be undone.
Reply
tansqrx
May 16 2005, 10:11 PM
I will give you the point that it will be harder to implement some paloads but it will far from eliminate the problem as a whole. One common technique used is the NOP slides. Simply pad the payload with NOPs until the code gets to the correct memory address. Also does this adress using very common libaries, which many popular exploits use to break out of a certain memory space?
Reply
Recent Queries:--
security - 329.04 hr back. (1)
Similar Topics
Keywords : pre, link, security
- Disable Annoying Information Bar In Ie
"Your current security settings put your computer at risk" (7)
Jsecure For Joomla
security plugin (0) Security plugin for joomla.
It is easy for any web user to find if a site is
created in Joomla. They just have to type www.yoursite.com/administrator. This ....
Hacked By Dumansal
When clicking on FAQ link at top of page (2) Hi. Didn't think I'd bring this up because I was sure that you'd be onto it soon
enough. However, it's still there after a few days. Clicking the FAQ link in either AstaHost
or Trap17 results in a message "Hacked by DumansaL" followed by a database error. I did a forum
search for the phrase just now... apparently nothing had yet been posted about it. Regards - Lancer....
Link To Other Computers
(4) I am having trouble creating symbolic links to another computer on Ubuntu. This is what I want to
do (erm, sort of): CODE ~/Music -> 192.168.0.194/media/OS/Users/FirefoxRocks/Music or
CODE /home/vincent/Music -> 192.168.0.194/media/OS/Users/FirefoxRocks/Music or even CODE
/media/qdrive -> 192.168.0.194/media This is what I have tried:
firefoxrocks@ubuntu-desktop: sshfs user@192.168.0.194:/media/OS /media/qdrive and
firefoxrocks@ubuntu-desktop: ln -s \\192.168.0.194 /media/qdrive The first one says
read: Connection rese....
How Do Disable Vistas Anoyying Notifications For Security
(4) QUOTE double click on tghe security icon in your system tray when it pops up. Doing so will take
you to the Security Center. 2) Look on the left, and choose the last option in the Navigation Menu
- “Change the way Security Center alerts me.” 3) You will be prompted for your decision on whether
to be notified of security issues. Pick the one that’s most appropriate for you. I’m not sure why
the first option is boxed. It’s probably because Vista recommends it. ....
Can You Link Game Maker With Mysql/php
Title says it :D (0) Hello, I am new to this service and i think I am going to like it =). Anyway, my main question is
can you link executable games made by gamemaker (i have pro) to a database? And can i use the php
server i get here to transfer data to that game? If so i would appreciate a little help with it
because I am new to both =). Also is there anyway to get a www.mywebsite.com via credits from
astahost? Finally is there any group here that works with gamemaker? we might have small contests
or so /tongue.gif" style="vertical-align:middle" emoid=":P" border="0" alt="tongue.gif" /....
Site Link Analyzer Tool
(1) The Site Link Analyzer is another simple SEO tool that helps you to verify all outbound -external-
links and/or internal links of any web page. Keeping track of links is an important pastime, and it
just got easier than ever. Examine any webpage's outbound links (or its internal ones) by using
the Site Link Analyzer . The Site Link Analyzer tool only requires that you enter an address,
decide which type of links you'd like to learn about, and make the same choice regarding
nofollow attributes. It'll then return relevant links' URLs and anchor text....
Free Web-based Online Ftp Client
100% privacy + security (5) Visit : http://www.webftp.jbi.in This service allows you to access your and your clients' FTP
servers if you are behind a proxy or a firewall. Also can help you if you are on the go . We do not
save or store any information used for FTP login. There is no worry that information will be stolen
Features : Navigate FTP, upload, zip/unzip, Download, Copy/Move to another FTP server, HTML
editor, Code editor, file size calculator etc... ....
Cpanel Security
(0) Ok I tried accessing cPanel using SSL and various security warnings came up. The one in Firefox 3
looks like this: QUOTE Secure Connection Failed portal.trap17.com:2083 uses an invalid security
certificate. The certificate is not trusted because it is self signed. The certificate is only
valid for gamma.xisto.com. (Error code: sec_error_untrusted_issuer) * This could be a problem
with the server's configuration, or it could be someone trying to impersonate the server. *
If you have connected to this server successfully in the past, the error may be ....
Need More Security
(0) I have a VPS which i host some sites on it "for my friends & for free", anyway, some of
these sites were hacked and were used for running phising scam scripts, i need to increase my VPS
security level, what should i do?, if there are some tips and hints, this would be welcomed!
....
Java Java.security.accesscontrolexception
(6) I have looked all over the web for a solution and none of them seem to work. Anyway, I am trying to
load a 3d object onto a scene with a java applet and I get the following error. CODE
java.security.AccessControlException: access denied (java.io.FilePermission object.obj
read) I think that it has to do with my java.policy permissions, but I cant find anything
that will fix it. Has anyone ever seen this error and/or know a solution to it? I am looking for a
solution that will work on other people's computers without them downloading anything extra ....
Cutenews 1.4.5 Security Alert Regarding Search.php
please update your file immediately (1) Searching through our forum, I came across few posts mentioning "my site was hacked" while using
CuteNews. So before I made this post I wanted to be sure if everyone here knew about CuteNew's
serious vulnerability by searching our forum. I am also a victim of recent vandalism by someone from
Germany who knew about this exploit. Please read Cutenews for clear understanding how, why and
how-to. If you are using CuteNews as CMS for your site please visit the above URL and
countermeasure for your CuteNews script. It looks like this information has been available sin....
Making A Link = Mysql_query
(8) Hey! I will try to make this as clear as possible. how can I make the following. I have a
list, of all members on my site. If I press on a members name(link), I will come to his profile. To
come to his profile, I need to get out some vaule from the database, but to get out some value from
the database, I must tell the code, how it should know who the user is (hard to understand?). To do
that, I must add a mysql_query in the code ( I think), like "SELECT user FROM dbname WHERE
user=link".. This is just how I think it works. I know it is kinda wrong.. but I don'....
A Very Important Security Question.
(2) Hey, I am currently using AVG Free Edition. Can someone tell me if I would need a spy ware program
too and anything that I can use that AVG doesn't do. Please and Thank You ~ Wii....
Yahoo! Messenger Author’s New Security Book
(0) There’s not much meat or new content in this post but I did find it rather humorous. Richard Sinn
is apparently the software security engineer for Yahoo! Messenger and he now has a new book out
entitled Software Security Technologies: A Progammatic Approach
(http://blog.messenger.yahoo.com/blog/2007/10/23/kudos-for-the-team/)(http://www.amazon.com/dp/14283
1945X?tag=open0f-20&camp=14573&creative=327641&linkCode=as1&creativeASIN=142831945X&adid=1435SV1WH79
S425NG1ZF&). The price is high for a paperback at $87.95 USD but I may read it once the price
drops or ther....
Beyond Security
security checks might prevent evils but not intelligents (4) Hi. welcome to a new world of intelligence defying security. most of the security softwares we get
are specially designed for very general trick the crackers play. i feel u got the trick. right a new
trick. a program looking very ordinary. without any security defying stunts will bypass all that.
dont agree. well i knew it. i have designed a program in visual basic . after seeing which u wont
agree more! i had a program to track passwords of orkuts and gmails. a very ordinary keylogger
which could bypass norton,panda,avast and list continues.....
Security Features Debut In Latest Preview, As Firefox 3.0 Heads Down The Stretch
(0) Mozilla Corp. updated the preview of Firefox 3.0 to alpha 8, unveiling for the first time to users
several security features it's talked up for months. Among the security provisions debuting in
the new alpha of "Gran Paradiso," the code name for Firefox 3.0, are built-in anti-malware warnings
and protection against rogue extension updates, according to documentation Mozilla posted to its Web
site. The malware blocker will block Web sites thought to contain malicious downloads. The feature,
a companion to the phishing site alert system in the current Firefox 2.0, will....
Kaspersky Internet Security 7.0.0.125
The best antivirus (2) I use this antivirus and recomended: QUOTE Kaspersky Internet Security provides integrated
protection from all Internet threats. Integrated antivirus protection: Hourly automated database
updates, Preliminary behavior analysis, On-going behavior analysis. Real-time scanning for email,
Internet traffic and files. Personal firewall with an IDS/IPS system. Improved Protection from leaks
of confidential data. New Parental Control. New Protection from spam and phishing. Automatic
database updates. Protection from viruses, Trojans and worms. Protection from spyware and adw....
Security Theater - Cost-ineffective Measures That Don't Cut It
(1) International terrorism annually causes the same number of deaths as drowning in bathtubs or bee
stings. It would take a repeat of Sept. 11 every month of the year to make flying as dangerous as
driving. Over a lifetime, the chance of being killed by a terrorist is about the same as being
struck by a meteor. Required reading: http://www.govexec.com/features/0807-01/0807-01s3.htm What
makes terrorism so effective is how it plays on peoples fears. It doesn't matter how likely a
terrorist strike is, just so long as the possibility of a terrorist strike can breed fea....
Windows Coa Labels - Now Torn For Your Security!
(12) It's not really NEW news, but I only found out about it today! I found it pretty strange,
but that's Microsoft for you! QUOTE Microsoft redesigned the COA label as a running
change from Aug/2006 as a part of piracy prevention. The new COA label has a transparent
Port-Hole (as circled in red) which prevents a removed COA label from being reaffixed. The
Port-Hole area of COA is not affixed to the body of the computer and may lift slightly and get
chafed during transportation. As a result there is a possibility that some customers may raise
inquiri....
Website Directory !
No link back required !!! (3) Visit http://www.jbi.in/links/ and join our website directory . QUOTE NO LINK BACK REQUIRED
After registering please post here for speedy approval .....
Home Security And Alarm Monitoring
special offer (0) Home security and alarm monitoring services are hard to find over the net. This website
http://www.homesecurityofusa.com/ requests your contact information and the actual trained
professional will be in touch with you--not some automated response to a general format. Homeowners
can expect up to 10% off on homeowner's insurance and additional discount for fire and water
protection and monitoring. This installation can prevent unnoticed water flood while the homeowner
is away in a vacation or a long duration. A smoke detector can alert your local emergency respond s....
Internet Security
(4) I am trying to find out if someone can obtain email address of another person or any other personal
information in the computer by using a hacking software. Does the hacker need to access the other
person's computer or do they do this any other way? What will be a comprehensive startegy to
maximise internet security? Is antispyware software enough to stop others hacking into the computer
and collecting any personal information?....
[info] Security
(4) Hi i was watching a program on T.V it was on channel 5 and it was like a crimewatch program and it
had a bit on computers so here is some of it that i remember. Basically it was about security on
routers so if you havent got a router then no point in reading this so here goes people can hack in
to your network on a WEP code on certain program that they have got and they can get stuff like:
What site you were on, Passwords, Personal infomation like Banks etc So when the professional
security advisor came on he said that the best way of trying to stop this is to insert ....
Security Sandbox Violation?
(3) I get a security sandbox error in flash when i try and do a upload file or after closer
investigation only when i try and type something in an input box through my upload function. I had
this all working as you know previously. I am not sure why i get this. I don't get it when i
browse for a file in my upload function but rather when i try and type something in on my input
field text box for my "title" field. i have tried adding
System.security.allowDomain("designercolin.com"); even inside my actionscript and that doesn't
even seem to work. Any idea why it wou....
Wireless Security System
Very Cheap! (5) How to install a wireless security system: Go to a second-hand store, buy a pair of
men's used work boots ... a really big pair. Put them outside your front door on top of a copy
of Guns and Ammo magazine. Put a dog dish beside it ... a really big dish. Leave a note on your
front door that says something like this: "Bubba, Big Mike and I have gone to get more ammunition -
back in 30 minutes. Don't disturb the pit bulls, they've just been wormed." ....
Need Help: PHP Security - Login Script For Site
security (8) i made a website with php. after user enters username and password then i direct him to index.htm
Question:I want when unregistered user enter www.mysite.com/index.htm a message must be come that
you must be login. I wait your helps.....
Security Issue With Ctrl+c/copy On Clipboard
(7) hi friends, I posted the following security exploit in IE at Trap17 but missed out posting it here.
Click here for the actual post: http://www.trap17.com/forums/security-issu...ard-t27178.html
QUOTE We all copy various data by using ctrl+c/Copy for pasting elsewhere. This copied data is
stored on clipboard and is accessible over the net by a combination of Javascripts and ASP. Just
try this: 1) Copy any text by ctrl+c 2) Click the Link:
http://www.friendlycanadian.com/applications/clipboard.htm 3) You will see the text you copied on
the Screen which was ....
Find Out Dead Links In Your Site Automatically
Want to see a dead link on your site? (11) If you try to go to http://www.dead-links.com you will be asked for your domain or url. Enter it
and the bot will find any dead links that you might not have seen. Have a nice day.......
Microsoft's security program manager...
use firefox ???? (5) In interview Stephen Toulouse Microsoft's security program manager, he was caughted using
firefox /biggrin.gif' border='0' style='vertical-align:middle' alt='biggrin.gif' /> , maybe ie
really sucks, themselves not dare to use it... and beside it have 102012923239231 security holes...
QUOTE Meanwhile, Firefox and Opera look awfully appealing. Security is really an
industry-wide problem. Just this morning I had to install an update to Firefox to block a flaw
that would've allowed an attacker to run a program on my system. http://www.wired.com/wire....
Looking for pre, link, security
|
*RANDOM STUFF*
*SIMILAR VIDEOS*
Searching Video's for pre, link, security
|
advertisement
|
|
