TechEcho

10 comments

kev009almost 8 years ago

This was a great preso.I think we need to fund regular audits of FreeBSD that use this type mindset.

评论 #14876878 未加载

评论 #14871497 未加载

vacrialmost 8 years ago

Impressive that FBSD only had 20% more bugs over OBSD despite having 200% more lines of code.

评论 #14872285 未加载

teporxahoralmost 8 years ago

Ilja is one of the baddest dudes out there. Excellent work once again, chapeau!

评论 #14873220 未加载

sigjuicealmost 8 years ago

OpenBSD stopped claiming "N years without a localhost hole in the default install!" in 2000. See <a href="https://web.archive.org/web/20000815063126/http://openbsd.org:80/" rel="nofollow">https://web.archive.org/web/20000815063126/http://openbsd.or...</a> and <a href="https://web.archive.org/web/20001110110500/http://www.openbsd.org:80/" rel="nofollow">https://web.archive.org/web/20001110110500/http://www.openbs...</a>But Page 6 of this pdf has OpenBSD developers going on about Linux and its 20 localhost kernel security holes in 2005. Seems a bit dishonest.

评论 #14871637 未加载

评论 #14874061 未加载

nreillyalmost 8 years ago

Are there any CVEs for these? Have they been fixed?

评论 #14873733 未加载

Pengtuzialmost 8 years ago

Seems interesting. Is there a recorded talk to go with this?

评论 #14872427 未加载

Piccolloalmost 8 years ago

<pre><code> expired pointers, Double frees, Underflows, overflows, signedness, NULL deref, Division by zero, Memory leaks </code></pre> YIKES!

peterwwillisalmost 8 years ago

Blasphemy!

评论 #14871324 未加载

gigatexalalmost 8 years ago

Have the BSD devs seen this? Have the required bugs been filed?

jjawssdalmost 8 years ago

What is the likelihood that we will see a major operating system written in a safe language such as Rust in the next 10 years?

评论 #14872656 未加载

评论 #14871422 未加载

评论 #14872297 未加载

评论 #14871665 未加载

评论 #14875229 未加载

评论 #14873243 未加载

10 comments

kev009almost 8 years ago

This was a great preso.I think we need to fund regular audits of FreeBSD that use this type mindset.

评论 #14876878 未加载

评论 #14871497 未加载

vacrialmost 8 years ago

Impressive that FBSD only had 20% more bugs over OBSD despite having 200% more lines of code.

评论 #14872285 未加载

teporxahoralmost 8 years ago

Ilja is one of the baddest dudes out there. Excellent work once again, chapeau!

评论 #14873220 未加载

sigjuicealmost 8 years ago

评论 #14871637 未加载

评论 #14874061 未加载

nreillyalmost 8 years ago

Are there any CVEs for these? Have they been fixed?

评论 #14873733 未加载

Pengtuzialmost 8 years ago

Seems interesting. Is there a recorded talk to go with this?

评论 #14872427 未加载

Piccolloalmost 8 years ago

<pre><code> expired pointers, Double frees, Underflows, overflows, signedness, NULL deref, Division by zero, Memory leaks </code></pre> YIKES!

peterwwillisalmost 8 years ago

Blasphemy!

评论 #14871324 未加载

gigatexalalmost 8 years ago

Have the BSD devs seen this? Have the required bugs been filed?

jjawssdalmost 8 years ago

What is the likelihood that we will see a major operating system written in a safe language such as Rust in the next 10 years?

A survey of BSD kernel vulnerabilities [pdf]

10 comments

A survey of BSD kernel vulnerabilities [pdf]

10 comments