Network Security: Detailed info on Re: [Full-Disclosure] Xfree86 video buffering?

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

Re: [Full-Disclosure] Xfree86 video buffering?

from [KF (Lists)] Network Security

[Permanent Link]

Subject:	Re: [Full-Disclosure] Xfree86 video buffering?
Date:	Thu, 24 Feb 2005 20:23:28 -0500


All kidding aside, this seems to be a real security issue. Your system
shouldn't be showing unauthorized users what you were doing. It should
properly flush the memory.

I do have a movie clip showing a session where root was viewing the /etc/shadow file. The shadow is displayed on the screen for about 5 seconds before the KDM login pops up. Ask if you want to actually SEE this in action just ask and I'll mail it to ya.

Does a power off flush it?

I have power cycled at least one of the machines and let it sit for several minutes. Also as I stated before sometimes when I get up in the morning I catch glimpses of stuff I viewed just prior to shutting the machine down for the night.

Several folks have mentioned it could be related to the ram chips on the video card.

-KF

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-Disclosure] Xfree86 video buffering?, KF (lists) Re: [Full-Disclosure] Xfree86 video buffering?, defiance Re: [Full-Disclosure] Xfree86 video buffering?, KF (Lists) Re: [Full-Disclosure] Xfree86 video buffering?, William Waisse Re: [Full-Disclosure] Xfree86 video buffering?, Valdis . Kletnieks Re: [Full-Disclosure] Xfree86 video buffering?, Eric Paynter Re: [Full-Disclosure] Xfree86 video buffering?, Eric Windisch Re: [Full-Disclosure] Xfree86 video buffering?, Rodrigo Barbosa Re: [Full-Disclosure] Xfree86 video buffering?, KF (Lists) Re: [Full-Disclosure] Xfree86 video buffering?, Rodrigo Barbosa Re: [Full-Disclosure] Xfree86 video buffering?, KF (Lists) <= Re: [Full-Disclosure] Xfree86 video buffering?, Rodrigo Barbosa Re: [Full-Disclosure] Xfree86 video buffering?, Valdis . Kletnieks RE: [Full-Disclosure] Xfree86 video buffering?, Allan Re: [Full-Disclosure] Xfree86 video buffering?, James Tucker [Full-Disclosure] Re: Xfree86 video buffering?, Riad S. Wahby Re: [Full-Disclosure] Xfree86 video buffering?, bkfsec Re: [Full-Disclosure] Xfree86 video buffering?, Michael Holstein Re: [Full-Disclosure] Xfree86 video buffering?, Stan Bubrouski Re: [Full-Disclosure] Xfree86 video buffering?, bkfsec Re: [Full-Disclosure] Xfree86 video buffering?, Stan Bubrouski

Previous by Date:	Re: [Full-Disclosure] Xfree86 video buffering?, KF (Lists)
Next by Date:	Re: [Full-Disclosure] Exploiting apache, Nick FitzGerald
Previous by Thread:	Re: [Full-Disclosure] Xfree86 video buffering?, Rodrigo Barbosa
Next by Thread:	Re: [Full-Disclosure] Xfree86 video buffering?, Rodrigo Barbosa
Indexes:	[Date] [Thread] [Top] [All Lists]