Security :: Address Space Randomization On 2.6.28-15-generic Ubuntu 9.04 - Finding Base Address?
Sep 14, 2009
Im an academic (university networks and security lecturer) studying/teaching network and operating system security, and inspired by the work of Hovav Shacham set about testing ASLR on linux. Principley I did this by performing a brute force buffer overflow attack on Fedora 10 and Ubuntu 9. I did this by writting a little concurrent server daemon which accidently on purpose didnt do bounds checking.
I then wrote a client to send it a malicious string brute forcing guessed addresses which caused a return-to-libc to the function usleep with a parameter of 16m causing a delay of 16 seconds as laid out in [URL] Once I hit the delay I new I had found the function and could calculate delta_mmap allowing me to create a standard chained ret-to-libc attack. All of that works fine. However .... To complete my understanding I am trying establish where I can find the standard base address for ubuntu 9 (and other distros) for the following, taken from Shacham:-
Quote:
[code]....
/proc/uid/maps gives me some information but not the base address ldd also gives me the randomised starting address for sections in the user address space but neither gives me the base address. Intrestingly ... when a run ldd with aslr on for over (about) 100 times and checked the start point of libc I determined that the last 3 (least significant) hex digits were always 0's and the fist 4 (most significant) where between 0xB7D7 and 0xB7F9. To me this indicated that bits 22-31 were fixed and bits 12-21 were randomized with bits 11-0 fixed. Although even that doesnt define the boundaries observed correctly.
Note: I am replicating the attack to provide signatures to detect it using IDS, and for teaching purposes. I am NOT a hacker and if needed to could reply from my .ac.uk email address as verification.
View 1 Replies
ADVERTISEMENT
Nov 21, 2010
I am trying to understand working of pci_resource_start function So I browsed code via cscope and searched for string pci_resource_start and got following in pci.h
Code:
#define pci_resource_start(dev, bar) ((dev)->resource[(bar)].start)
I am not able to understand how does this above macro works. How does it above macro gets appropriate base address register in configuration space?
View 1 Replies
View Related
Feb 21, 2011
if i attach a shared memory to my process whch part of the address space it will add(like stack, heap, data, code...).
View 3 Replies
View Related
Jul 15, 2010
What are the differences between base address and I/O address?
View 1 Replies
View Related
May 9, 2011
I am using Fedora 14 (64 bit version) Can't start XAWTV. Returns this error: $ xawtv This is xawtv-3.99.rc6, running on Linux/x86_64 (2.6.35.12-90.fc14.x86_64) xinerama 0: 1920x1080+0+0 WARNING: No DGA direct video mode for this display. WARNING: keeping fbuf pitch at: 7680, as no base addr was detected WARNING: couldn't find framebuffer base address, try manual configuration ("v4l-conf -a <addr>") v4l2: WARNING: framebuffer base address mismatch v4l2: me=(nil) v4l=(nil) Warning: Missing charsets in String to FontSet conversion Warning: Missing charsets in String to FontSet conversion Oops: can't load any font
View 1 Replies
View Related
Mar 4, 2011
i installed slackware current straight(make iso from it and installed on clean disk) and i installed Multilib current from alien and now when i wanna compile wine source its write
"configure: OpenCL 32-bit development files not found, OpenCL won't be supported.
configure: libsane 32-bit development files not found, scanners won't be supported.
configure: gstreamer-0.10 base plugins 32-bit development files not found, gstreamer support disabled
[code].....
I checked i got that libaries in /lib and /lib64 why it doesent work it was working on slackware 13.1 with multilib
View 4 Replies
View Related
May 12, 2010
I'm setting up a static IP address & I need to know the mac address of my 2 unbuntu machines? [8.04 & 9.10].
View 3 Replies
View Related
Apr 4, 2010
I'm looking for a way to get my IP address using the command prompt in Linux. I know when you type "ifconfig" you can get your local IP address (i.e. 192.168.0.103), but I'm looking for my IP address that I get from my ISP. How can I get this from Linux without having to visit some website?
View 3 Replies
View Related
Feb 5, 2011
My Ipod got stolen a few days ago and I am trying to figure out its mac address so that i can track it. I have sshed into it several times and i found some logs for some of the sessions but I cant find its mac address anywhere. I am wondering is there a way i can figure it out with my ssh logs or some of my other logs?
View 1 Replies
View Related
Dec 10, 2009
when i send any packet to anu destination and want to see he mac address of source and destination i am using the command tcpdump -qec1 but rather then getting the mac address of source and destination each time i am getting mac address of the system which is broadcasting. will anybody tell me how can i get source and destination mac address even if any other packet is also being broadcast to my network.
View 1 Replies
View Related
Jun 29, 2009
How can i find out what mac address had been configured by factory default. I changed my mac address with
Code:
ip link set addrs 00:01:02:03:04:05
and now want to have the original one back. I'm having some trouble with a gigabit LAN PCI Express card. Namely the 89156 from delock. Output of dmesg
Code:
r8169 Gigabit Ethernet driver 2.3LK-NAPI loaded
[ 4.137225] r8169 0000:02:00.0: PCI INT A -> GSI 16 (level, low) -> IRQ 16
[ 4.137268] r8169 0000:02:00.0: setting latency timer to 64
[ 4.137346] r8169 0000:02:00.0: irq 27 for MSI/MSI-X
[code]....
So the card was recognized by the kernel. The driver was loaded and everything fine.... should be! But after assigning an ip addr and setting the nic up with
Code:
ip addr add 192.168.1.1/24 dev eth1
ip link set dev eth1 up
the kernel complained about something like that
Code:
?SISTEM? Can't assign address Also I could not find anything useful on the net finally the readme gave me some. So i changed the MAC address and everything was fine. The nic came up and got an ip through dhclient.i want to know why the old/original mac address didn't work. But even after reboot the new mac address remains. All I know the old one begun with 7b. how to get the original mac of a nic?
View 4 Replies
View Related
Aug 15, 2010
I have installed Kubuntu Lucid x86 10.4 LTS for the first time. Has anyone got a link that explains how KPackageKit gets the IP address of the repositories? I can install packages using sudo apt-get install xxx OK . KpackageKit tells me I have updates from the repositories. I can select them all and apply , but I get an error that it can't find the repository under a 192.168.100.129:8080 address . Which is not a surprise . I am using mirror.optus.net as a repository and can ping it fine on the command line. So is there somewhere else that KPackageKit maps IP addreses ? I have tried another mirror mirror.aarnet.edu.au and got similar results. My local sub-net is not 192.168.100 and have tried setting fixed IP on the local sub-net and different DHCP addresses and still the same error.
View 5 Replies
View Related
Oct 14, 2010
I am trying to find IP address. In a socket programming tutorial, I found :
Code:
$ nslookup localhost
command. It gives me a address. However, one colleague told me :
Code:
$ ifconfig
It also returns me inet_addr. But both are different. Kindly tell me the correct method to find IP address? I have also checked the /etc/hosts file but it says "localhost"
View 2 Replies
View Related
May 11, 2009
I would like, from a C program, find the hardware MAC address of the default route path. With BASH I can do a 'route' find 'default and then an ifconfig and grep for 'HWaddr'. Are there C calls to do the same??
View 12 Replies
View Related
Jan 28, 2011
creating a mailing list I need a software that can do that. Other formats like txt or rtf would be great too, as I can easily convert.
View 4 Replies
View Related
Feb 24, 2010
Currently my OS is Ubuntu 9.04 Jaunty Jackalope Desktop OS and my web server is Apache2. I have a public address 60.x.y.z and my pc local address is 10.x.y.z. I have a web app in my Apache2 which currently run in localhost(10.x.y.z).
I would like to enable the web app so that it could be browse from outside. I know there maybe some port forwarding process and some commands involved in order to do that. But I have no idea on the steps to do that.
View 5 Replies
View Related
Dec 18, 2010
i want to know mac address of a particular ip but the problem is that i am unable to ping that ip but that ip is being used by someone in my local network that i know from my proxy logs. i want to know the mac address of that ip,
View 5 Replies
View Related
Dec 16, 2010
Version 10.04 LTS. Installed desktop version and network worked but I needed a static IP address and the install configures for a DHCP configured address. I tried changing to static address using the System->Preferences->Network Connections application but was unable to get the system to come up with the network up.
So I manually modified the /etc/network/interfaces and the /etc/resolv.conf files. I restart the system but when I do an ifconfig, I don't see a configured IP address on eth0 (only the loopback address). If I run /sbin/ifup eth0 everything then works fine and ifconfig shows the correct address bound to eth0.
My files are as follows:
View 2 Replies
View Related
Jan 16, 2011
When I try to search for something in the main address bar It always adds the following with my input at the end
View 1 Replies
View Related
Mar 12, 2011
I'm running Ubuntu 10.10 and I'm having problems trying to assign it a static IP address. No matter what I put in the Preferences->Networking area (identifying the interface as Manual)... it still will query DHCP for an address if I run the dhclient command. I'm using to using ubuntu server where I just set the IP in the interfaces config file.
View 1 Replies
View Related
Aug 4, 2011
If I give "ifconfig" in my laptop I get eth0,lo,wlan0.In that where do I find my Ip address in Ubuntu in 10.04. In eth0 I dont find inet address.Where can I find it?
View 2 Replies
View Related
Apr 27, 2010
Writing a program that finds the IP address of a host name. Sorry forgot to include the line numbers, but where the $$$ is where the syntax error is. The errors are syntax error before "{" token and syntax error before "if". I've looked throught the code for a couple hours and can't figure out what's causing it. The code is attached below.
#define WIN
#include <stdio.h>
#include <stdlib.h>
[code]....
View 8 Replies
View Related
Feb 17, 2011
In firefox you can type ubuntuforums and it will bring you here via a google query.Mines stopped working the address bar goes to http://ubuntuforums/ and I get a forbidden page.I've check about : config and all is set fine
Code:
Keyword.enable = true
Keyword.URL = http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
[code]....
View 5 Replies
View Related
Mar 15, 2011
i am pretty much brand new to ubuntu i have messed around with it a little and have gotten my apache2 server up and running what i have some questions on is
1. How can i give my server a actual address and not my ip address?
2. Is there any way i can put like forum software on part of it? if so how?
3. What is the best way to write web pages i know some html so thats how i was able to write what i have now just wondering what best way is
View 1 Replies
View Related
May 12, 2011
I am working on implementing a protocol on NS2.34 .I really need help to solve this problem . Actually , I don't now whether the problem is generated by the tcl code or the c++ code when I run the simulation, I get this result :
Code:
num_nodes is set 64
INITIALIZE THE LIST xListHead
34
45
channel.cc:sendUp - Calc highestAntennaZ_ and distCST_
highestAntennaZ_ = 1.5, distCST_ = 550.0
SORTING LISTS ...DONE!
code....
View 1 Replies
View Related
Apr 1, 2011
I want to pass ip address,port address and some parameters from command line using python script.The ip address and port address for establishing socket connection and remaining parameters to execute different connection.
View 1 Replies
View Related
Apr 24, 2010
Consider the following program:
Code:
#include <stdio.h>
#include <stdint.h>
[code]...
View 2 Replies
View Related
Apr 6, 2011
I need a small shell based program that prints the mac address of physical ethernet adapter from it's firmware. I need this utility for license generation and appliance activation. I have tried several example but none of them is flawless, The easiest method I have found is to parse the output of "ifconfig" command but it has also some drawbacks.
1. Firstly program should differentiate between physical and virtual adapters. Physical means installed on board(wired or wireless) or installed additionally. Virtual adapters are those created by VPN or created by virtualization apps such as VirtualBox/VMWare etc. I am not interested in virtual ones.
2. In case of more them one physical adapters(wired and wireless), it should print the mac address and description(name & vendor) of both/all adapters.
3. If media is disconnected then also it should be able to read the mac address and description(name, vendor) of card.
4. This one is bit complex. I know that 'ethtool' can show you the universal mac address but it's limited to use only 2 types of drivers and won't work in all cases.
View 2 Replies
View Related
May 7, 2010
I am running my own Postfix mail server. Some time ago I noticed that most email was rejected because of the server's dynamic IP address. So I got a fixed IP address. However then I noticed that some mails got rejected due to failing the reverse DNS check. So my ISP told me to get a range of IP addresses and they could then create a PTR record for one of those addresses. That is now running but it turns out that the IP address used for the PTR record is a ... dynamic IP address. So Spamhaus PBL rejects my emails again.
View 1 Replies
View Related
Sep 4, 2009
I hv Cent OS 5.3 installed as server. I hv a network of approx 100 desktops and laptops. For a security purpose i want to block certain laptops from gaining a the network access using dhcp. Can we block the ip address leasing if a specific MAC address request for a ip lease?
View 7 Replies
View Related
