Im an academic (university networks and security lecturer) studying/teaching network and operating system security, and inspired by the work of Hovav Shacham set about testing ASLR on linux. Principley I did this by performing a brute force buffer overflow attack on Fedora 10 and Ubuntu 9. I did this by writting a little concurrent server daemon which accidently on purpose didnt do bounds checking.
I then wrote a client to send it a malicious string brute forcing guessed addresses which caused a return-to-libc to the function usleep with a parameter of 16m causing a delay of 16 seconds as laid out in [URL] Once I hit the delay I new I had found the function and could calculate delta_mmap allowing me to create a standard chained ret-to-libc attack. All of that works fine. However .... To complete my understanding I am trying establish where I can find the standard base address for ubuntu 9 (and other distros) for the following, taken from Shacham:-
/proc/uid/maps gives me some information but not the base address ldd also gives me the randomised starting address for sections in the user address space but neither gives me the base address. Intrestingly ... when a run ldd with aslr on for over (about) 100 times and checked the start point of libc I determined that the last 3 (least significant) hex digits were always 0's and the fist 4 (most significant) where between 0xB7D7 and 0xB7F9. To me this indicated that bits 22-31 were fixed and bits 12-21 were randomized with bits 11-0 fixed. Although even that doesnt define the boundaries observed correctly.
Note: I am replicating the attack to provide signatures to detect it using IDS, and for teaching purposes. I am NOT a hacker and if needed to could reply from my .ac.uk email address as verification.
Is there a way of allowing only certain domain to send e-mails to certain specific e-mail address. I am using Sendmail, and I have an alias which translate to certain members of staff within my organization. I don't expect e-mails from outside our domain to be sent to this alias e-mail address.
I am hoping someone out there is an avid dungeons and dragons player who possibly uses maptool. I am having issues getting connected to a server. I can't even join a server. This is making me barking mad. Everything else seems to work great. I can surf the net, email, everything but get maptool to recognize my correct IP.
The space in the volume name seems to disagree with fstab and terminal, I can't change the volume name either as I do not have access to Windows at this time. Is there a way I can help fstab or the terminal to recognize the space in part of the volume name?
I am working with a script that sends out a mail with an attachment by using the uuencode command along with the mail command. But my problem is when I need to run the script using an email address with a dot in the middle of the address (ie. email@example.com)
I have a server (RHEL 4.7) with an mqueue that keeps growing over a two or three day interval. Then I have to manually flush the queue by removing all the mail in the spool directory as the sendmail flush command doesn't work. I've looked at the mail queue manually with a sendmail -bp command and it seems to show an occaisional mail item in the queue. On the other hand, there seems to be a lot more non-legitimate emails in the queue spool. how do I find out the source of the email in the main queue? Next, how do I stop it from building the queue? Next, is there anyway to automatically flush the queue once it builds if I need to?
My Ubuntu One account. I had intended to change my email address, but after entering the second address, I find I cannot delete the original. I have the second one set to my primary, but I can still log in with either. I'd like to be able to permanently delete the first.
I just discovered View > "All message headers" in the Evolution email client and am quite concerned that all my out going emails contain my personal IP Address. I know that this is standard email protocol but i'm wondering if it is possible to hide or modify this header information? Or would i be better off using a webmail client?
tried to sign up but it felt like a badly coded .asp page, wouldn't accept my email address? Same address hand typed both boxes? tried it quite a few times, very unubuntu. still explanation marks next to each email address?
I'm currently working on a project to help visually impaired people. We're planning to use Orca screen reader for gnome. Everything is doing great but there is a problem with email web clients the most popular ones(gmail, yahoo, hotmail) are not optimized for screen readers. Is there some kind of simple email client optimized for this? Need to be very simple and straight foward and support multiple users too.40
Is there a way to control all email address in one server manage all email application software either win OS / MAC OS or Linux Distro. I have experience about email when the pc crashed i dont have any backup for their email data also email address.
I'm looking for a way to get my IP address using the command prompt in Linux. I know when you type "ifconfig" you can get your local IP address (i.e. 192.168.0.103), but I'm looking for my IP address that I get from my ISP. How can I get this from Linux without having to visit some website?
My Ipod got stolen a few days ago and I am trying to figure out its mac address so that i can track it. I have sshed into it several times and i found some logs for some of the sessions but I cant find its mac address anywhere. I am wondering is there a way i can figure it out with my ssh logs or some of my other logs?
when i send any packet to anu destination and want to see he mac address of source and destination i am using the command tcpdump -qec1 but rather then getting the mac address of source and destination each time i am getting mac address of the system which is broadcasting. will anybody tell me how can i get source and destination mac address even if any other packet is also being broadcast to my network.
How can i find out what mac address had been configured by factory default. I changed my mac address with
ip link set addrs 00:01:02:03:04:05
and now want to have the original one back. I'm having some trouble with a gigabit LAN PCI Express card. Namely the 89156 from delock. Output of dmesg
r8169 Gigabit Ethernet driver 2.3LK-NAPI loaded [ 4.137225] r8169 0000:02:00.0: PCI INT A -> GSI 16 (level, low) -> IRQ 16 [ 4.137268] r8169 0000:02:00.0: setting latency timer to 64 [ 4.137346] r8169 0000:02:00.0: irq 27 for MSI/MSI-X
So the card was recognized by the kernel. The driver was loaded and everything fine.... should be! But after assigning an ip addr and setting the nic up with
ip addr add 192.168.1.1/24 dev eth1 ip link set dev eth1 up
the kernel complained about something like that
?SISTEM? Can't assign address Also I could not find anything useful on the net finally the readme gave me some. So i changed the MAC address and everything was fine. The nic came up and got an ip through dhclient.i want to know why the old/original mac address didn't work. But even after reboot the new mac address remains. All I know the old one begun with 7b. how to get the original mac of a nic?
I have installed Kubuntu Lucid x86 10.4 LTS for the first time. Has anyone got a link that explains how KPackageKit gets the IP address of the repositories? I can install packages using sudo apt-get install xxx OK . KpackageKit tells me I have updates from the repositories. I can select them all and apply , but I get an error that it can't find the repository under a 192.168.100.129:8080 address . Which is not a surprise . I am using mirror.optus.net as a repository and can ping it fine on the command line. So is there somewhere else that KPackageKit maps IP addreses ? I have tried another mirror mirror.aarnet.edu.au and got similar results. My local sub-net is not 192.168.100 and have tried setting fixed IP on the local sub-net and different DHCP addresses and still the same error.
I would like, from a C program, find the hardware MAC address of the default route path. With BASH I can do a 'route' find 'default and then an ifconfig and grep for 'HWaddr'. Are there C calls to do the same??
I have a domain hosted with some remote host where I pay $10 a month and they provide me with, among other things, a bunch of email addresses. One of these addresses is my default address I use for everything and is firstname.lastname@example.org. I no longer have a Blackberry, I switched over to a HTC Hero with Google Android so I'm wondering how I could get that email address pushing emails out to my phone. Android supports Exchange but the licenses are too expensive for me. Is there an Ubuntu alternative to make this work somehow?
how to stop Evolution adding the sender's email address, that is the one who sent it to me, in the body of the email when I forward it? I have been through the settings and help and am so far unable to find any action I can take.
I want to share 3 email addresses and an address book among 2 users on a small network with 3 computers. Emails come from 3 different POP email accounts. There are 2 users.Each user may use any of 3 computers on the network (2 computers are linux, one is Windows XP). The 2 users have separate userids on the linux machines, but share an account on the Windows machine.
Each user should be able to view, reply to, delete, and otherwise deal with emails from any of the 3 POP sources, regardless of which computer the user is logged on to. Also, each user should be able to view and update entries in the address book, regardless of which computer the user is logged on to. What about using a system like courier or egroupware to retrieve and store the email from the 3 POP sources? Then courier or egroupware could make its mail store (maildir?) available via IMAP to the 2 users via email clients on each of the 3 computers.
The mail would be stored in the single, unique, courier or egroupware maildir store, not in the email clients. So if any user deletes a message or replies to a message, the action is visible to the other user from any computer. Also, emails only need be deleted once, not multiple times from each email client. I have looked at the courier and egroupware documentation, but I can't figure out whether either of them can be set up to retrieve email from 3 POP sources? If they can, how do you do it?
They appear to be email servers that collect emails sent to the domain they are configured to serve? could email clients be setup to share a single mailbox and address book (at least on the linux machines. forget about Windows). I guess the mailbox would lock when any client opened it, so only one client at a time could be active.