advertisement

Weblog:   New (local) Mac OS X vulnerability : Passwords in Swap files
Subject:   Nothing new and not just Macs
Date:   2004-06-28 10:08:22
From:   timharig
Response to: Nothing new and not just Macs

mlock() is only partially applicable. It does not prevent memory from being written to the disk during suspend for instanstance. While it can prevent the programs data from being swapped it does not nessessary prevent the entire programs memory, with stack, from being swapped.


The only way that I know around this problem is to
a. keep your system secure through other means
b. turn off swapping entirely
c. on Linux you can prevent a program from being swapped buy setting it suid which comes with other potential problems.


Root can get the password without looking for passwords saved on the disk. False getty logins for instance.
Full Threads Oldest First

Showing messages 1 through 1 of 1.

  • Nothing new and not just Macs
    2004-06-28 10:29:02  timharig [Reply | View]

    Are passwords the only thing that you wish to mlock()? Should your browser be protected to prevent your credit card numbers from being written? What next. Your word processor because some of the files are encrypted with your passphrase or key? Will there be anything left that can be swapped out to conserve system resources?
Showing messages 1 through 1 of 1.