Re: One for the Security Guru's

H. Peter Anvin (hpa@zytor.com)
25 Oct 2002 13:52:27 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alan Cox: "Re: KT333, IO-APIC, Promise Fasttrak, Initrd"
Previous message: Alan Cox: "Re: [OT]AMD/Intel interrupt latency (jitter) differences?"
Maybe in reply to: Robert L. Harris: "One for the Security Guru's"
Next in thread: Henning P. Schmiedehausen: "Re: One for the Security Guru's"

Followup to: <1035539042.23977.24.camel@forge>
By author: Henning Schmiedehausen <hps@intermeta.de>
In newsgroup: linux.dev.kernel
> >
> > A. If there's a buffer overflow in the SSL Accelerator box the firewall
> > wont do you much good (it helps, but only a little).
>
> This is a hardware device. Hardware as in "silicon". I very much doubt
> that you can run "general purpose programs" on a device specifically
> designed to do crypto. And this is _not_ just an "embedded Linux on ix86
> with a crypto chip".
>

Hardware devices have bugs, too. Furthermore, most devices marketed
as "hardware" still have programmable stuff underneath. Trust me.

-hpa

-- 
<hpa@transmeta.com> at work, <hpa@zytor.com> in private!
"Unix gives you enough rope to shoot yourself in the foot."
http://www.zytor.com/~hpa/puzzle.txt	<amsp@zytor.com>
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Next message: Alan Cox: "Re: KT333, IO-APIC, Promise Fasttrak, Initrd"
Previous message: Alan Cox: "Re: [OT]AMD/Intel interrupt latency (jitter) differences?"
Maybe in reply to: Robert L. Harris: "One for the Security Guru's"
Next in thread: Henning P. Schmiedehausen: "Re: One for the Security Guru's"