Date: Mon, 19 Jun 2006 18:29:57 +0400 From: "Nick Borisov" <neiro21@gmail.com> To: freebsd-security@freebsd.org Subject: Re: memory pages nulling when releasing Message-ID: <3bcb4e3f0606190729ned52dbah2ab2477461cc6596@mail.gmail.com> In-Reply-To: <3bcb4e3f0606190728m29b67270mda8088eab2ff0ba1@mail.gmail.com> References: <44967861.6070509@obluda.cz> <20060619104258.66212.qmail@web30312.mail.mud.yahoo.com> <3bcb4e3f0606190728m29b67270mda8088eab2ff0ba1@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
2006/6/19, R. B. Riddick <arne_woerner@yahoo.com>: > But if a bad guy has already root access it does not really matter, > (aa) if he has to wait for some minutes or hours, > or > (bb) if he has just a small time window > or > (cc) if he can immediately start with scanning for secrets in /dev/mem. I would argue about this. Allowing an intrunder to deal with your system even one extra minute may lead to tremendous losses depending on what kind of data your system operates with. As Dan mentioned, the cost of data defines means of security you should use to protect it. As for standards, they are Russian national governmental ones appliyng to computer systems that operate confidential, secret and more sensitive data.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3bcb4e3f0606190729ned52dbah2ab2477461cc6596>