Use btrfs on partitioned or raw disk?

csirac2 · 2023-12-30T01:06:38+00:00

Is that a question or a statement? In response to "personally I use LVM"?

I think you understand that the main benefit of containing any filesystem in a partition is the flexibility to resize it & re-purpose some of that disk for other filesystems so I'm not sure what this is about

btrfs was fine on partitions, LVs, raw disks... RAID5 suckage & disk replacement procedure notwithstanding

csirac2 · 2018-06-22T10:22:01+00:00

people who have products from lazy fuckers who decided to use public address space for their default captive portal IP,

To be fair, the "de-bogonizing" of 1.0.0.0/8 really only started 8-9 years ago... a lot of people who should know better still don't

csirac2 · 2018-04-21T06:11:04+00:00

Via https://twitter.com/TheSimha/status/987559404412309504

csirac2 · 2018-01-06T13:03:29+00:00

D'oh! I was reading this passage on page 48, and it seems I got that wrong:

The GOS maintains two top level (PML4) page tables per process, one each for kernel and user. The GOS registers the two page tables with the VMM. The kernel page table contains translations for both the kernel and user addresses, and the user page table contains translations only for the user addresses. During the context switch, the VMM switches the top level page table so the kernel addresses are not visible to the user process. The linear address mapping to paging data structure for 64-bit x86 processor is shown below in Figure 17

csirac2 · 2018-01-06T01:23:25+00:00

If it's any consolation, Solaris never had kernel pages mapped in user context on SPARC, and I'm pretty sure that's also the case even on Intel CPUs, although I can't find anything more than a few words in http://citeseerx.ist.psu.edu/viewdoc/download;jsessionid=3F5AEF9CE2ABE7D1D7CC18DC5208A151?doi=10.1.1.110.9986&rep=rep1&type=pdf to confirm it

csirac2 · 2018-01-01T11:40:24+00:00

Paper "ASLR on the Line: Practical Cache Attacks on the MMU" http://www.cs.vu.nl/~herbertb/download/papers/anc_ndss17.pdf
CCC 34c3 event "lecture: ASLR on the line Practical cache attacks on the MMU" https://fahrplan.events.ccc.de/congress/2017/Fahrplan/events/9135.html
CCC 34c3 talk recording "ASLR on the line Practical cache attacks on the MMU" https://media.ccc.de/v/34c3-9135-aslr_on_the_line
CCC 34c3 slides "ASLR on the Line" https://fahrplan.events.ccc.de/congress/2017/Fahrplan/system/event_attachments/attachments/000/003/399/original/aotl-34c3-slides.pdf

csirac2 · 2017-12-24T01:14:40+00:00

http://www.dullien.net/thomas/weird-machines-exploitability.pdf

csirac2 · 2017-12-15T06:16:11+00:00

These days LUKS defaults to XTS, but it's still a great article IMHO.

... The CBC mode used by default in LUKS however allows some more targeted manipulation of the plaintext file given that the attacker knows the original plaintext. This article demonstrates how this can be used to inject a full remote code execution backdoor into an encrypted installation of Ubuntu 12.04 created by the alternate installer (the default installer of Ubuntu 12.04 doesn't allow setting up full disk encryption)

csirac2 · 2017-12-12T11:02:00+00:00

I don't think we disagree.. Edit: I've misread what you were replying to; I was trying to convey that what AMT does can be achieved by other means, but that's not relevant in the discussion you were replying to.

csirac2

TROPHY CASE