I did write a remote kernel exploit for OpenBSD, it was not an easy task, and th... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		aortega on May 10, 2016 \| parent \| context \| favorite \| on: Why OpenBSD Is Important to Me I did write a remote kernel exploit for OpenBSD, it was not an easy task, and this was in a time when there were basically no exploit countermeasures in kernel (2007) (https://www.coresecurity.com/content/open-bsd-advisorie) There are a bunch of local kernel exploits, all very practical and reliable. Kernel protections are something OpenBSD lacked until very recently.

PhantomGremlin on May 10, 2016 [–]

Yes, thanks for reminding me of that one.

That timeline isn't pretty. The OpenBSD guys really needed to be dragged, kicking and screaming, to calling it a "security fix" rather than something milder like a "reliability fix".

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact