huagang is currently certified at Journeyer level.

Name: Huagang XIE
Member since: 2004-01-15 01:35:08
Last Login: N/A

FOAF RDF Share This

Homepage: http://www.lids.org

Notes:

I am the author of LIDS project (www.lids.org). I am interested in kernel hacking, vulnerability researching, snowboarding....;_)

Projects

Recent blog entries by huagang

Syndication: RSS 2.0
Security News Site at securitytrap.com

I am creating a new web site using Drupal at http://www.securitytrap.com .

The ideas is to put a high profile vulnerability, worms/virus and other security releated stuff on the web site and disucss it.

It maybe a good addition to bugtraq and other mailing list. The website also include the lastest virus thread from symantec and the mailing list of bugtraq and full-disclosure from seclists.org and other good stuff..

11 May 2004 (updated 11 May 2004 at 00:30 UTC) »
LIDS forum is on

Finally make it up to use at http://lids.9781.org, hope I can make it on http://forum.9781.org in the future. The forum is good to do some documentation which need to edit a lot.

I am posting the "Hacking LIDS 2.2" series on it. When I finished, a new SGML file could be created and HTML finally on the webpage.

LIDS LIVE CD

I am using SLAX script to genereate a LIVE-CD with Fedora and LIDS. In order to do that, I already hack a lot on the script to make it works on initrd and other things.

The object is to make a LIDS LIVE_CD avaiable for user to use as needed. And I also want to use kernel 2.6 , but the overly filesystem is not supported, maybe I can hack a little bit on it to see if I can make it work on kernel 2.6.

4 May 2004 (updated 4 May 2004 at 01:28 UTC) »
Sasser worm

It seems that this worm do not have the high impact on the network like blaster or nachi. But seems the new virant have much more high impact now.

From all the worm outbreak, we can tell since human naturaly are lazy, it wont solve the problem if you ask people to patch the system. A lot of solution has come out, like IDS,IPS, HIDS and buffer overrun prevetion tool, but it still wont solve the problem if MS still dominate the OS world.

One possibility is to make the OS variant, with randomize library, ramdomize DLL name etc. :-(

9 Apr 2004 (updated 9 Apr 2004 at 06:08 UTC) »
LIDS 2.2.0pre2 2.6.5

Okay...make it online.

I am pretty happy that tomorrow is "big friday" and I can use the whole day to read the new book The shellcoder's Handbook. I was wondering how reliable the book will explain the windows heap overflow.

Per-inode ACL and performance enhancement

The new version of LIDS 2.2 will remove the origninal xattr support, but will use the inode labeling concept to enhance the acl search/labeling performance.

The new version compatible with old version of LIDS, the only difference is after all the lidsconf acl, user need to do a

#lidsconf -C

to compile the acl into a binary file..kernel will read this binary file to parse it. The benifit is now kernel only need to read one file and will not do all the atoi() etc..and will make it more secure.

The new version make the lidsconf do more job and let the kernel do less job. Now not only the process have the object list (a simple one, only contain a sid and oid and a inherit ) and the object also have a list showing which program have what kind of permisson on it. In this way, process will do all the inherit merging staff and checking its acl with the object inode's peromssion bits.

Another enhancement is when fetching an inodes' acl, if it is not attached, will go to check its parent dir until found an acl. once found, the acl will attached to it and all the parent directory. In this way, the next time, when the same inode being accessed, it will get the acl right away, even if the file is not the same, but in the same directory, it will only go up once to its direct parent and get the inode. This way will accelate the performance when doing acl comparision/checking.

16 older entries...

 

huagang certified others as follows:

  • huagang certified reniar as Journeyer

Others have certified huagang as follows:

  • pasky certified huagang as Journeyer
  • mterry certified huagang as Journeyer
  • daverd certified huagang as Journeyer
  • lerdsuwa certified huagang as Journeyer

[ Certification disabled because you're not logged in. ]

New Advogato Features

New HTML Parser: The long-awaited libxml2 based HTML parser code is live. It needs further work but already handles most markup better than the original parser.

Keep up with the latest Advogato features by reading the Advogato status blog.

If you're a C programmer with some spare time, take a look at the mod_virgule project page and help us with one of the tasks on the ToDo list!

X
Share this page