Comments for Suspekt...

Comment on Month of PHP Security - Blog Post Drawing by 3/7/2010 Update « Go Code

3/7/2010 Update « Go Code — Sun, 07 Mar 2010 05:13:53 +0000

[...] Suspekt Blog Archive Month of PHP Security – Blog Post Drawing [...]

Comment on Month of PHP Security - Blog Post Drawing by Webby Scripts Suspekt… » Blog Archive » Month of PHP Security – Blog Post Drawing

Sat, 06 Mar 2010 22:29:10 +0000

[...] more from the original source: Suspekt… » Blog Archive » Month of PHP Security – Blog Post Drawing [...]

Comment on Suhosin-Patch 0.9.9.1 by Stefan

Stefan — Sat, 06 Mar 2010 21:59:50 +0000

There are no offical windows binaries. And I suggest to not use inofficial windows binaries, because they might contain trojans.

At the moment it is unknown if there ever will be windows binaries.

Comment on Suhosin-Patch 0.9.9.1 by G. Flindt

G. Flindt — Sat, 06 Mar 2010 15:56:05 +0000

Where can I find the Windows binaries?

Since your forum is offline (when will it be available again?), this is a little problem - I’d love to use Suhosin but I’m not able to build the extension on my own.

Comment on Suhosin-Patch 0.9.9.1 by Stefan

Stefan — Fri, 05 Mar 2010 19:12:00 +0000

The pointer obfuscation is for now only a simple XOR of the pointers with a random value. Right now this random value will be generated once in the beginning, so it is the same for all requests (when PHP runs as module).

However this was just the first attempt to implement it: Most probably it will be changed to use a different random value for each new request.

Obfuscation affects the forward and backward pointers of free memory blocks. And the free memory cache. This stops several attacks against the free memory cache.

Other pointer might get obfuscated in future versions, however the problem is to stay compatible with PHP extensions like APC and Zend Tools. These tools often do not use API functions to do the things they want (sometimes because there are no such API functions) so it is not possible to just obfuscate the pointers.

Comment on Suhosin-Patch 0.9.9.1 by Willem

Willem — Fri, 05 Mar 2010 12:16:59 +0000

Can you tell me what kind of pointer obfuscation techniques you have used?

Comment on Suhosin-Patch 0.9.9.1 by trophaeum

trophaeum — Fri, 05 Mar 2010 12:09:40 +0000

thanks pax team for spending time on helping an already awesome project!

Comment on Month of PHP Security 2010 - CALL FOR PAPERS by Suspekt… » Blog Archive » Month of PHP Security - Blog Post Drawing

Fri, 05 Mar 2010 08:06:37 +0000

[...] from various blog posts about it than there are submissions to drawing@php-security.org. Like I previously announced we will honor 10 blog postings with 25 EUR amazon coupons. The winners will be selected by random, [...]

Comment on State of the Art Post Exploitation in Hardened PHP Environments by - CNIS mag

- CNIS mag — Wed, 03 Mar 2010 19:16:37 +0000

[...] Fabien Periguaud sur le Blog du Cert Lexsi. L’auteur revient en détail sur une communication de Stefan Esser (dernière BlackHat). A noter également ce papier très « complet » publié par La Sécurité [...]

Comment on Month of PHP Security 2010 - CALL FOR PAPERS by Stefan Esser’s Blog: Month of PHP Security 2010 - CALL FOR PAPERS | Webs Developer

Mon, 01 Mar 2010 15:50:43 +0000

[...] Esser has officially announced the Call for Papers for the Month of PHP Security happening in May 2010. The MoPS is an effort to both close security [...]