Re: linux on ibm mainframe -

you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- pub 1024D/01045933 2001-02-01 Linas Vepstas (Labas!) [EMAIL PROTECTED] PGP Key fingerprint = 8305 2521 6000 0B5E 8984 3F54 64A9 9A82 0104 5933

Re: CPU Arch Security [was: Re: Probably the first published shell code]

On Mon, Nov 11, 2002 at 08:40:45PM +0100, Ulrich Weigand was heard to remark: Linas Vepstas wrote: Every page of memory has a storage key, which holds a key and a fetch-protection bit. If the fetch-protection bit is cleared, then anyone can read the page; if the fetch-protection bit is set

Re: CPU Arch Security [was: Re: Probably the first published shell code]

On Tue, Nov 12, 2002 at 02:00:14AM +0100, Ulrich Weigand was heard to remark: Linas Vepstas wrote: -- if 'exception 04' can be caught and passed back up to the library, Unfortunately it can't, as key-protection violation is a 'terminating' exception condition, which means the CPU state

Re: CPU Arch Security [was: Re: Probably the first published shell code]

On Fri, Nov 08, 2002 at 05:50:56PM +0100, Ulrich Weigand was heard to remark: Linas Vepstas wrote: Sorry I used the word semaphore. Using pipes shmem is hard. Well, using them is easy, using them and creating something that's extenisble, maintainble, lacks race conditions and other bugs

Re: CPU Arch Security [was: Re: Probably the first published shell code]

this kind of unauthorized access. Today, you cannot make a distinction between trusting apache itself, and trusting any apache module, since they both run in the same address space, and therefore have full read and write access to that address space. --linas -- pub 1024D/01045933 2001-02-01 Linas

Re: CPU Arch Security [was: Re: Probably the first published shell code]

. To modify the return address, you only need write access to the stack, you don't need execute permissions. --linas -- pub 1024D/01045933 2001-02-01 Linas Vepstas (Labas!) [EMAIL PROTECTED] PGP Key fingerprint = 8305 2521 6000 0B5E 8984 3F54 64A9 9A82 0104 5933

Re: CPU Arch Security [was: Re: Probably the first published shell code]

address-space security, you *must* write multiple-process apps, which means you *must* use IPC to coordinate the processes. Ugh. *That is what I'm talking about.* --linas -- pub 1024D/01045933 2001-02-01 Linas Vepstas (Labas!) [EMAIL PROTECTED] PGP Key fingerprint = 8305 2521 6000 0B5E 8984 3F54

Re: CPU Arch Security [was: Re: Probably the first published shell code]

in it. :-) --linas -- pub 1024D/01045933 2001-02-01 Linas Vepstas (Labas!) [EMAIL PROTECTED] PGP Key fingerprint = 8305 2521 6000 0B5E 8984 3F54 64A9 9A82 0104 5933

Re: CPU Arch Security [was: Re: Probably the first published shell code]

time I turned it on. -- pub 1024D/01045933 2001-02-01 Linas Vepstas (Labas!) [EMAIL PROTECTED] PGP Key fingerprint = 8305 2521 6000 0B5E 8984 3F54 64A9 9A82 0104 5933

Re: CPU Arch Security [was: Re: Probably the first published shell code]

On Fri, Nov 08, 2002 at 12:55:31AM +0100, Ulrich Weigand was heard to remark: Linas Vepstas wrote: I didn't say it wasn't enormous. Its not tiny, but I'm not sure its that big either. Well, for a start, you can't really do program calls in home space mode (which is where Linux user mode

CPU Arch Security [was: Re: Probably the first published shell code]

impractical to engage in this task. -- pub 1024D/01045933 2001-02-01 Linas Vepstas (Labas!) [EMAIL PROTECTED] PGP Key fingerprint = 8305 2521 6000 0B5E 8984 3F54 64A9 9A82 0104 5933 msg09195/pgp0.pgp Description: PGP signature

Re: CPU Arch Security [was: Re: Probably the first published shell code]

On Tue, Nov 05, 2002 at 08:03:35PM +, Alan Cox was heard to remark: On Tue, 2002-11-05 at 19:04, Linas Vepstas wrote: For this to catch on in the mainstream, other CPU architectures would need to add similar features as well. But given the recent burbling from microsoft and intel about