| New User, Welcome! Login |
Jacob Appelbaum
oc photon wrote:
> n Thu, Feb 28, 2008 at 1:56 PM, Jacob Appelbaum <jacob@appelbaum.net> wrote:
>> Moin moin Bugtraq readers,
>>
>> Bill Paul and I have discovered that LoginWindow.app doesn't clear
>> credentials after a user is authenticated.
> This has already been discovered in 2004. While the author only looks
> at swap files, it is obvious that this is the same bug.
>
> http://seclists.org/bugtraq/2004/Jun/0417.html
simple methods. We demonstrate our methods by using them to defeat three
popular disk encryption products: BitLocker, which comes with Windows
Vista; FileVault, which comes with MacOS X; and dm-crypt, which is used
with Linux. The research team includes J. Alex Halderman, Seth D.
Schoen, Nadia Heninger, William Clarkson, William Paul, Joseph A.
Calandrino, Ariel J. Feldman, Jacob Appelbaum, and Edward W. Felten."
"Our site has links to the paper, an explanatory video, and other
materials."
"The root of the problem lies in an unexpected property of today’s DRAM
On Thu, Feb 28, 2008 at 06:28:51PM -0800, Jacob Appelbaum wrote:
> oc photon wrote:
> > n Thu, Feb 28, 2008 at 1:56 PM, Jacob Appelbaum <jacob@appelbaum.net> wrote:
> >> Moin moin Bugtraq readers,
> >>
> >> Bill Paul and I have discovered that LoginWindow.app doesn't clear
> >> credentials after a user is authenticated.
> > This has already been discovered in 2004. While the author only looks
> > at swap files, it is obvious that this is the same bug.
> >
Problem ID: 5726694
Title: Information disclosure with LoginWindow.app
State: Duplicate /3250780
Originated Date: 05-Feb-2008 05:57 PM
05-Feb-2008 05:57 PM Jacob Appelbaum:
Loginwindow doesn't sanitize the user supplied password after the login
is authenticated. This appears to last for the entirety of the session.
The application loginwindow running as:
"/System/Library/CoreServices/loginwindow.app/Contents/MacOS/loginwindow
n Thu, Feb 28, 2008 at 1:56 PM, Jacob Appelbaum <jacob@appelbaum.net> wrote:
> Moin moin Bugtraq readers,
>
> Bill Paul and I have discovered that LoginWindow.app doesn't clear
> credentials after a user is authenticated.
This has already been discovered in 2004. While the author only looks
at swap files, it is obvious that this is the same bug.
http://seclists.org/bugtraq/2004/Jun/0417.html
I would like to inform that the next edition's agenda is now available
at: http://2010.confidence.org.pl/agenda.
Among the many distinguished speakers, you can find:
########## SPEAKERS ##########
# Jacob Appelbaum - "Anonymity, Privacy, and Circumvention with Tor in the Real World
# Ulascan Aytlolun, Celil ‘karak0rsan’ Ünüver - "Analysis of Software Vulnerabilities"
# Axelle Apvrille - "The Four Horsemen – Malware for mobile"
# Frank Breedijk - "PKI is dead, long live PKI"
# Jesse Burns - "Aurora attacks" and "Android Reverse Engineering"
# Gynvael Coldwind - "Case study of recent Windows vulnerabilities"
as your keys may be written out to the hard drive without _any_ crypto
at all. It appears that TuxOnIce does the right thing while other
systems are all over the map.
Regards,
Jacob Appelbaum
I want to remind everyone that CONFidence is happening in less than two weeks.
http://2009.confidence.org.pl/warsztaty
CONFidence is an international conference that has been taking place in May in Poland for the last 5 years. CONFidence is focused on research and best practices of database, application, systems and network security. CONFidence is a two-day event, (15-16 May, 2009) divided in three tracks. The speakers list includes: Bruce Schneier, Tavis Ormandy, Jacob Appelbaum, Joanna Rutkowska, Rich Smith, Mario Heiderich, Mark Schoenefeld and many many more top security experts.
Moreover, just before CONFidence amazing trainings will be organized:
# w3af ninja - Andres Riancho - 12th May 2009
# Discovery and exploitation of web application vulnerabilities - Andres Riancho - 13th May 2009
# Analyzing and Securing Enterprise Application Code by Blueinfy - Shreeraj Shah & Vimal Patel - 14th May 2009
# Secure Java Programming - Marc Schoenefeld - 14th May 2009
This update for the Iceape internet suite, an unbranded version of
Seamonkey, updates the certificate blacklist for several fraudulent
HTTPS certificates.
More details can be found in a blog posting by Jacob Appelbaum of the
Tor project:
https://blog.torproject.org/category/tags/ssl-tls-ca-tor-certificates-torbrowser
The oldstable distribution (lenny) is not affected. The iceape package only
provides the XPCOM code.
You can find all informations here:
http://200902.confidence.org.pl
Speakers list (alfabetical order):
* Chema Alonso
* Jacob Appelbaum – keynote
* Jesse Burns
* Frank Breedijk
* Łukasz Bromirski
* Raoul Chiesa
* Gynvael Coldwind
Debian-specific: no
CVE ID : not available
This update for Iceweasel, a web browser based on Firefox, updates the
certificate blacklist for several fraudulent HTTPS certificates. More
details can be found in a blog posting by Jacob Appelbaum of the Tor
project:
https://blog.torproject.org/category/tags/ssl-tls-ca-tor-certificates-torbrowser
For the oldstable distribution (lenny), this problem has been fixed in
seizure will still result in someone getting the keys that are in memory
- unless you're using some sort of secure crypto co-processor (which no
one is).
Regards,
Jacob Appelbaum
|
|
|
