The first chunk of those slides talk about library hijacking. Say, you define yo... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

scott_s on Oct 18, 2011 | parent | context | favorite | on: Dropbox: The Inside Story Of Tech's Hottest Startu...

The first chunk of those slides talk about library hijacking. Say, you define your own version of malloc, make sure the application links to your version of malloc, and play your tricks from there. Process isolation has not been violated.

The last five slides seem to be doing this: http://www.blackhat.com/presentations/bh-usa-09/DAIZOVI/BHUS...

Slide 4 is the difference: OSX is BSD running on top of Mach. So these techniques use the Mach layer to get around basic process protection. This is terribly insecure.

tlrobinson on Oct 18, 2011 [–]

Yeah, the injection stuff was what I was referring to.

Apple apparently changed OS X in 10.4.4 to only allow root or procmod group to do this http://guiheneuf.org/mach%20inject%20for%20intel.html

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact