[Dailydave] The long tail of vulnerable operating systems

[Lance M. Havok]

On 11/12/07, Eduardo Tongson <propolice at gmail.com> wrote:
> With protections like SSP, NX and ASLR on recent operating systems its
> getting harder to compromise one via overflows. The favorite pwning
> vectors today are vulnerabilities in web applications and social
> engineering.

My favorite vector is 'positive discrimination'. I call their IT
support department, saying that this bullshit NX does not let my game
server software work properly, that ASLR is slowing down the stats
calculation and causing problems with some weird pre-compiled binaries
from ID3, and finally I claim that their Apache server is refusing to
work because after an update it claims the '__guard' symbol ain't
coming up. This all in a seriously desperate and exasperating manner,
you guess.

Then they, as the neat guys they are, promptly proceed to deactivate
these whole defense-in-depth-crap in every single server of their
customers network, using a backdoor SSH service preinstalled on every
dedicated server they rent. With a preinstalled key that is shared by
all IT support members, who browse gay porno, brazilian zoo and other
musings of the sick minds. Somehow, at some point, the whole network
is just fucking raped and they wonder how something like that could
happen.

It's an universal truth that CTF games are for bragging about
Packetstorm archives search skills. And some knowledge of compilation
and GNU/Unbungu installation, too. Some elites use Gentoo with setuid
fluxbox, but those are rare.

> I hope the old RedHat with Wu-ftpd holes stays a favorite in CTF
> competitions. I got my first root with that classic combination.

I got mine with OpenSSH key sharing, Itz liek teh mag1c!

XOXOXO <i got arrested for public nudity, please set up FREE LANCE,
trial videos coming up! pray for me, i might be hanged :(>

FREE LANCE - Save Lance from hanging!
"Save a true hacker's life today"
And be remembered as one of the few who stood against many!