33C3: Works for Me
Posted on众所周知,混沌计算机俱乐部(AKA“CCC”)是德国最大的黑客社区,成立至今三十多年(每年都会举办黑客大会,今年是第三十三年即33C3。…
Linux kernel mitigation checklist
Posted onWe should treat security as a whole, just like the combination of PaX/Grsecurity features/code hardening build up a defense-in-depth solution for Linux kernel, which is a core infrastructre we are highly rely on. PaX/Grsecurity is a set of security hardening specific patch that brings the linux kernel security into another level. It's a great value to make all FLOSS community getting benefit from it. KSPP( Kernel self protection project) was started in Nov 2015 after a disclosure about linux kernel security.…
canary分析
Posted on由于stack overflow而引发的攻击非常普遍也非常古老, 有一种叫做canary的mitigation技术很早就出现在gcc/glibc里, 直到现在也作为系统安全的第一道防线一直存在.…
RELRO分析
Posted on在Linux系统安全领域数据可以写的存储区就会是攻击的目标,尤其是存储函数指针的区域.GCC,linker以及Glibc-dynamic-linker一起配合实现了一种叫做relro的技术,以最大可能地扩大只读属性的存储区.对于系统级的安全有极大的优点.…
Neutralize ME firmware on SandyBridge and IvyBridge platforms
Posted onRecord how I "neutralize" the ME firmware on my Thinkpad X220, in order to present its way.…
自由/开源软件(FLOSS)的最佳实践标准(第三部分)
Posted on本文提供一系列自由/开源软件 (FLOSS) 项目的最佳实践方法。参照这些最佳实践标准的项目可以进行自认证, 以获得核心基础设施促进会(CII)徽章。…