ipfw core dump
Neo-Vortex
root at Neo-Vortex.Ath.Cx
Fri Aug 27 04:51:09 PDT 2004
On Fri, 27 Aug 2004, Anton Alin-Adrian wrote:
> Neo-Vortex wrote:
> > On Fri, 27 Aug 2004, Anton Alin-Adrian wrote:
> >
> >
> >>Yes, it would be nice if you could also attach the ipfw.core file.
> >
> >
> > he he, you think hes stupid? core files can contain sensative
> > information... also it would be pointless unless we had the exact same
> > binary as he had with the same libraries (well, not entirely pointless,
> > but easier for him to do it :P)
> >
> >
>
> No i was not thinking of anything unethical. He could have inspected the
> .core file before sending it.
Yes, but say he didnt... and not neccessairly you, but anyone who is
subscribed to these forums...
>
> However, I doubt an ipfw core file would contain sensitive information
> (like passwords and etc). What could it contain, the ACL? The ACL is not
> secret and who cares anyway?
if it is indeed backdoor'd who knows what it could be accessing at the
time?
>
> I'm just interested in possible firewall bugs.
yes, but it would be easier to get him to load up gdb and do a backtrace
on it as for the whole same version of file and libraries thing...
>
> Yours,
> --
> Alin-Adrian Anton
> Spintech Systems
> GPG keyID 0x1E2FFF2E (2963 0C11 1AF1 96F6 0030 6EE9 D323 639D 1E2F FF2E)
> gpg --keyserver pgp.mit.edu --recv-keys 1E2FFF2E
> _______________________________________________
> freebsd-security at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe at freebsd.org"
>
More information about the freebsd-security
mailing list