[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]

Subject: [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
From: Matthew.Black at csulb.edu (Matthew Black)
Date: Mon, 14 Apr 2014 14:38:29 +0000
In-reply-to: <m2k3ati9nt.wl%[email protected]>
References: <[email protected]> <CAP-guGVNRhBusApvVCmcjCG0oc=JU6OAGK7-HX_y2gU5nrwbeA@mail.gmail.com> <[email protected]> <[email protected]> <m2k3ati9nt.wl%[email protected]>

Shouldn't a decent OS scrub RAM and disk sectors before allocating them to processes, unless that process enters processor privileged mode and sets a call flag? I recall digging through disk sectors on RSTS/E to look for passwords and other interesting stuff over 30 years ago.

matthew black
california state university, long beach

-----Original Message-----
From: Randy Bush [mailto:randy at psg.com] 
Sent: Sunday, April 13, 2014 7:31 AM
To: Bengt Larsson
Cc: nanog at nanog.org
Subject: Re: [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]

> It's quite plausible that they watch the changes in open-source 
> projects to find bugs. They could do nice diffs and everything.

the point of open source is that the community is supposed to be doing this.  we failed.

randy

Follow-Ups:
- [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
  - From: simon.perreault at viagenie.ca (Simon Perreault)
- [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
  - From: tglassey at earthlink.net (TGLASSEY)

References:
- Fwd: [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
  - From: rsk at gsp.org (Rich Kulawiec)
- [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
  - From: bill at herrin.us (William Herrin)
- [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
  - From: mpalmer at hezmatt.org (Matt Palmer)
- [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
  - From: lists.nanog at bengtl.net (Bengt Larsson)
- [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
  - From: randy at psg.com (Randy Bush)

Prev by Date: [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
Next by Date: [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
Previous by thread: [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
Next by thread: [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
Index(es):
- Date
- Thread