Security
ParanoidLinux: from fiction to reality
A novel for young adults by Cory Doctorow has inspired the creation of a new Linux distribution focused on privacy. ParanoidLinux is still in the planning stages, but it adopts some interesting ideas from Doctorow's book to place atop a Debian Testing base. It is targeted at those who have a very strict need to disguise their documents and network traffic because of a repressive regime.
Doctorow is familiar to many in the free software world, for his work as a science fiction author as well as a digital rights activist and blogger. His recent novel, Little Brother is set in the US after another devastating terrorist attack. Because of the attack, most civil liberties have been suspended leading some characters to use an alternative operating system:
It is that description, along with others in the book, that is guiding the development of the "real" ParanoidLinux. While it is relatively easy to come up with a fictional privacy-oriented operating system, the reality of building one is rather challenging. The project has only existed since May, so the current focus is to get some kind of alpha system put together as a starting point.
The idea of "chaff" is one that has been taken up on the ParanoidLinux wiki. There are several facets to the problem: how does one generate normal-looking traffic while somehow transferring encrypted data as part of that traffic. There are existing techniques that could be used. Chaff combines the ideas of steganography—hiding even the existence of a message—with cryptographic techniques.
The discussion about chaff makes it clear that the ParanoidLinux developers are looking at Doctorow's ideas carefully before implementing them. Chaff is certainly not a panacea, as it won't hide the traffic from an adversary that has specifically targeted someone. It is, instead, a means to fly under the radar, to appear to be a "normal" internet user with standard traffic patterns.
Using Tor (i.e. The Onion Router) is one way to anonymously use the internet—within limits—but traffic bound for a TOR node would be very suspicious to any monitoring agency. Another privacy-enhancing feature would be full-disk encryption, but that would be yet another red flag for an agency that was inspecting the computer. These are kinds of trade-offs that are being discussed by the project as they try to narrow their focus to something that can be implemented in the near term.
Hiding, or at least obfuscating, the existence of ParanoidLinux on the computer is another piece of the puzzle. It could be very dangerous to be required by the authorities to boot one's ParanoidLinux laptop. But, if it appears to be a "regular" system—perhaps looking much like Windows—it may escape scrutiny. Encrypted data might then be stored on partitions that are not directly accessible from the desktop.
This is an interesting project for those who worry about government crackdowns or perhaps already live under a repressive regime. Even if the ParanoidLinux distribution does not meet one's needs, the various discussions on options and different ways to approach a privacy-oriented operating system will be useful. One hopes not to ever need such a system, but knowing that people are thinking about the problem—while generating a working version—is certainly reassuring. For that, we can thank Doctorow for popularizing the idea.
New vulnerabilities
emacspeak: temporary file vulnerability
| Package(s): | emacspeak | CVE #(s): | CVE-2008-4191 | ||||||||
| Created: | October 1, 2008 | Updated: | October 1, 2008 | ||||||||
| Description: | The emacspeak extract-table.pl script (in versions 26 and 28) suffers from a temporary file vulnerability. | ||||||||||
| Alerts: |
| ||||||||||
firefox: multiple vulnerabilities
| Package(s): | mozilla-firefox | CVE #(s): | CVE-2008-0016 CVE-2008-3835 CVE-2008-3836 CVE-2008-4059 CVE-2008-4066 CVE-2008-4069 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Created: | September 26, 2008 | Updated: | January 8, 2009 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Description: | Multiple vulnerabilities have been discovered in Mozilla-Firefox. | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Alerts: |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
initscripts: local system file removal vulnerability
| Package(s): | initscripts | CVE #(s): | CVE-2008-3524 | ||||||||
| Created: | September 25, 2008 | Updated: | November 13, 2008 | ||||||||
| Description: | From the Fedora 9 update: This update fixes an issue (CVE-2008-3524) where a malicious user could cause system files to be removed on startup. | ||||||||||
| Alerts: |
| ||||||||||
kernel: denial of service
| Package(s): | kernel | CVE #(s): | CVE-2007-6716 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| Created: | September 25, 2008 | Updated: | December 3, 2008 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| Description: | From the Red Hat Enterprise Linux alert: a flaw was found in the Linux kernel Direct-IO implementation. This could allow a local unprivileged user to cause a denial of service. | ||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Alerts: |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||
kernel: privilege escalation
| Package(s): | kernel | CVE #(s): | CVE-2008-3525 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Created: | October 1, 2008 | Updated: | June 25, 2009 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Description: | Linux kernels through 2.6.26.3 lack a capability check in the sbni WAN driver which could allow unauthorized users to perform privileged actions. | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Alerts: |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
mono: CRLF injection
| Package(s): | mono | CVE #(s): | CVE-2008-3906 | ||||||||||||||||||||
| Created: | September 30, 2008 | Updated: | December 7, 2009 | ||||||||||||||||||||
| Description: | From the CVE entry: CRLF injection vulnerability in Sys.Web in Mono 2.0 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the query string. | ||||||||||||||||||||||
| Alerts: |
| ||||||||||||||||||||||
openafs: denial of service
| Package(s): | openafs | CVE #(s): | CVE-2007-6559 | ||||
| Created: | September 30, 2008 | Updated: | October 1, 2008 | ||||
| Description: | From the Mandriva advisory: A race condition in OpenAFS 1.3.40 through 1.4.5 allowed remote attackers to cause a denial of service (daemon crash) by simultaneously acquiring and giving back file callbacks. | ||||||
| Alerts: |
| ||||||
pam_mount: restriction bypass
| Package(s): | pam_mount | CVE #(s): | CVE-2008-3970 | ||||||||
| Created: | September 30, 2008 | Updated: | October 22, 2008 | ||||||||
| Description: | From the Mandriva advisory: pam_mount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount. | ||||||||||
| Alerts: |
| ||||||||||
phpMyAdmin: code execution vulnerability
| Package(s): | phpMyAdmin | CVE #(s): | |||||||||
| Created: | September 25, 2008 | Updated: | October 1, 2008 | ||||||||
| Description: | From the Fedora 9 update: This update by upstream to phpMyAdmin 2.11.9.1 solves a not yet clearly specified code execution vulnerability. | ||||||||||
| Alerts: |
| ||||||||||
phpMyAdmin: cross-site scripting vulnerability
| Package(s): | phpMyAdmin | CVE #(s): | |||||||||
| Created: | September 25, 2008 | Updated: | October 1, 2008 | ||||||||
| Description: | From the Fedora 8 advisory: This update by upstream to phpMyAdmin 2.11.9.2 solves a not yet clearly specified XSS in MSIE using NUL byte vulnerability. | ||||||||||
| Alerts: |
| ||||||||||
rkhunter: insecure temp file
| Package(s): | rkhunter | CVE #(s): | |||||||||
| Created: | September 25, 2008 | Updated: | October 1, 2008 | ||||||||
| Description: | The rkhunter root kit checker has an insecure auxiliary tmp file usage issue that may lead to a symlink attack. | ||||||||||
| Alerts: |
| ||||||||||
rubygem-rails: SQL injection
| Package(s): | rubygem-rails | CVE #(s): | CVE-2008-4094 | ||||||||||||||||||||||||||||||||||||||||||||
| Created: | September 29, 2008 | Updated: | December 21, 2009 | ||||||||||||||||||||||||||||||||||||||||||||
| Description: | From Ruby on Rails Security Project: An SQL Injection vulnerability has been found in Rails. The issue affects Rails < 2.1.1, namely the :limit and :offset parameters that are not correctly sanitized:
Person.find(:all, :limit => "10; DROP TABLE users;")
A possible attack will work only if you allow the user control these two values as in User.find(:all, :limit => 10, :offset => params[:offset]). Note that will_paginate is not affected, it escapes the values before. | ||||||||||||||||||||||||||||||||||||||||||||||
| Alerts: |
| ||||||||||||||||||||||||||||||||||||||||||||||
thunderbird: buffer overflow
| Package(s): | mozilla-thunderbird, thunderbird | CVE #(s): | CVE-2008-4070 | ||||||||||||||||||||||||||||||||||||||||||||||||
| Created: | September 26, 2008 | Updated: | January 8, 2009 | ||||||||||||||||||||||||||||||||||||||||||||||||
| Description: | From the Ubuntu advisory: Georgi Guninski discovered that Thunderbird improperly handled canceled newsgroup messages. If a user opened a crafted newsgroup message, an attacker could cause a buffer overrun and potentially execute arbitrary code with the privileges of the user invoking the program. | ||||||||||||||||||||||||||||||||||||||||||||||||||
| Alerts: |
| ||||||||||||||||||||||||||||||||||||||||||||||||||
viewvc: ignore user-provided MIME types
| Package(s): | viewvc | CVE #(s): | |||||||||
| Created: | September 25, 2008 | Updated: | October 1, 2008 | ||||||||
| Description: | ViewVC ignores arbitrary user-provided MIME types, see ViewVC issue #354 for more details. | ||||||||||
| Alerts: |
| ||||||||||
Page editor: Jake Edge
Next page:
Kernel development>>