-> > From what I can tell from the little detail I have read is > that the system > at both a hardware and software level will not run any > program that is not > properly signed (or whatever). So, in order to get your Hey, sounds like the XBox. I was reading a link on MegaRad yesterday from a guy that claims to have figured out how to code for the XBox without using the PSDK or hacking the hardware, therefore making homebrew and non-MS licensed s/w completely legal. Apparently he's porting the linux kernel to it, to allow everything else to run off of that. So far he's managed to get some images displayed on-screen, which is a pretty major achievement seeing as he didn't use the devkit. Personally I'll have a hard time buying any hardware from a manufacturer that believes they can limit my use of the equipment I own. Maybe that means I won't have any choice in future. Ian Kayne Technical Specialist - IT Solutions Softlab Ltd - A BMW Company > -----Original Message----- > From: hellNbak [mailto:hellnbakat_private] > Sent: 09 July 2002 23:47 > To: Valdis.Kletnieksat_private > Cc: vuln-devat_private > Subject: Re: Plain text password for Microsoft (icwip.dun) > > > > It will prevent copyright abuse until broken. How long > does the average > > anti-piracy scheme last? And remember - you deploy this > one, you're STUCK > > with it because there's hardware involved. > > > I totally agree with you. > > > All it takes is one good buffer overflow. Like we haven't > seen security bugs > > in trusted, signed ActiveX controls and the like before. > I've seen almost > > nothing that says that *exploits* will be any more > difficult to carry out. > > From what I can tell from the little detail I have read is > that the system > at both a hardware and software level will not run any > program that is not > properly signed (or whatever). So, in order to get your > arbitrary code to > run, you need to be sure that the system will trust it -- > which adds a bit > of complication to the whole process but definately doesn't make it > impossible. > > > -- > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > > "I don't intend to offend, I offend with my intent" > > hellNbakat_private > http://www.nmrc.org/~hellnbak > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > ******************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient or the person responsible for delivering to the intended recipient, be advised that you have received this email in error and that any use of the information contained within this email or attachments is strictly prohibited. Internet communications are not secure and Softlab does not accept any legal responsibility for the content of this message. Any opinions expressed in the email are those of the individual and not necessarily those of the Company. If you have received this email in error, or if you are concerned with the content of this email please notify the IT helpdesk by telephone on +44 (0)121 788 5480. ********************************************************************
This archive was generated by hypermail 2b30 : Wed Jul 10 2002 - 11:47:54 PDT