silc question - insecure memory

From: cdowns (cdownsat_private)
Date: Fri Jan 31 2003 - 20:44:05 PST

Next message: Nicholas Weaver: "The Spread of the Sapphire/Slammer SQL Worm"

Previous message: securityat_private: "Security Update: [CSSA-2003-006.0] Linux: CVS double free vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Good Evening,
    while screwing around tonight checking memory for the SSH2 
advisory.  I noticed passphrase and complete sessions from silc in 
memory. I dont know if this is normal for silc ( I wouldnt think it 
would be ) but all you need to do it is:

cdowns@Vader:~$ sudo dd if=/dev/mem of=/home/cdowns/mem.dump | less 
~cdowns/mem.dump

then just search for you key phrase.

~!>D

-- 
------------------------------------------
      http://www.angrypacket.com
       Christopher M Downs,RHCE
       cdownsat_private
	
   char ash[]="\x48\x61\x69\x6C\x20"
   "\x74\x6F\x20\x74\x68\x65\x20\x4B"
   "\x69\x6E\x67";
-------------------------------------------

Next message: Nicholas Weaver: "The Spread of the Sapphire/Slammer SQL Worm"
Previous message: securityat_private: "Security Update: [CSSA-2003-006.0] Linux: CVS double free vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Jan 31 2003 - 23:52:59 PST