From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-qt0-x22e.google.com (mail-qt0-x22e.google.com [IPv6:2607:f8b0:400d:c0d::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by lists.bufferbloat.net (Postfix) with ESMTPS id 77BF83B2A4 for ; Wed, 4 Oct 2017 12:38:13 -0400 (EDT) Received: by mail-qt0-x22e.google.com with SMTP id d13so19643383qta.5 for ; Wed, 04 Oct 2017 09:38:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=XIsbabgZJI4oSmq6zwHW7jOn4wzgrDtYbRtkbXmeUis=; b=aB27L3SPFDeXwUEazMUS3DcDWEPckIc0oMEOTWCunOaC+RMF2WMQpFkXVHUCwG8n3D zVm9DXglksyAgwavuDULuKbJ0mCs/wwpps/YLc3QWaMGjFjlEF2I96+b8QjvtpRcA86m GPmXJyjSTY8jNSomHpUXrVbtPcIb7yVEOgJXdxLtBfrXojQlIW0LLvwPfI+VHLKZq/Dq xuuVXkRQDxKYbLheBJr06I0pe46jXAYrz/ii4chAz2xyWnIRZUtJrXR55ApK0XebO9nU fSvVRfbIJP+I993PBsN9qK3WXtQ/VyiQ61EJoVRIocnSh1q11kb1gVQTZcI+5X9c3gLA E7Fg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=XIsbabgZJI4oSmq6zwHW7jOn4wzgrDtYbRtkbXmeUis=; b=af5wUW7SIOpEvsTddncs/IwJjPIRKlrnzFGH6RxfAxaHVeuDTPqF8kkDhaotBxMbPR edWUdxfGH22Y5KaUD7PDj/c66fSELvMt+f7S8McjSAbXSdcBi4JpQMn4qWAOKs5sxz5L e47J9h/MwO8EtZoH9DvKX55SXQLiBs7jmnxCF2AK0qDTxAT07K+rEWXXaJEXlY8eWyVB JQ+ipaeAwk9McdBvaHa8aHt1CjjoorybgytjXMimqCCDUhPxxRCSmfPMj5g2tQhj+jvE gTBhhR4PAL/7rYt3sv+7Pte0Ug+uNUeUaLldPg6RIo1Ts/tMceNjxJwS6aIjxGWp5fQh 5UlQ== X-Gm-Message-State: AMCzsaXDdfTXrw9sqwn3XofU7BKW9BJaQ5m3VSmzG4G85bdUwGWZb2bL lomlC3DD7zCDiVeAcY7QNUGJKNIIt1oipW84uJY= X-Google-Smtp-Source: AOwi7QCeOjZMdYJe8GZHue7PdZjKoLJtDqowsfzSpatp1v5nDTBolousjBnwEYX+aXrwH+ZvqCuToQxOfEKClRERFEc= X-Received: by 10.200.40.19 with SMTP id 19mr28289277qtq.314.1507135091130; Wed, 04 Oct 2017 09:38:11 -0700 (PDT) MIME-Version: 1.0 Received: by 10.12.195.67 with HTTP; Wed, 4 Oct 2017 09:38:10 -0700 (PDT) In-Reply-To: <82be7dac-c30b-449d-a392-305c31b83519@reed.com> References: <82be7dac-c30b-449d-a392-305c31b83519@reed.com> From: Dave Taht Date: Wed, 4 Oct 2017 09:38:10 -0700 Message-ID: To: David P Reed Cc: Rich Brown , "cerowrt-devel@lists.bufferbloat.net" Content-Type: text/plain; charset="UTF-8" Subject: Re: [Cerowrt-devel] dnsmasq CVEs X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.20 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Oct 2017 16:38:13 -0000 well, I still think the system is rotten to its (cpu) cores and much better hardware support for security is needed to start from in order to have better software. Multics pioneered a few things in that department as I recall, but research mostly died in the 90s... Blatant Plug: The mill cpu folk are giving a talk about how they do secure interprocess communication tonight in san jose, ca. I'm going. While I expect to be cheered up by the design (the underlying architecture supports memory protections down to the byte, not page, level, and may be largely immune to ROP) - I expect to be depressed by how far away they still remain from building the darn thing. https://millcomputing.com/event/inter-process-communication-talk-on-october-4-2017/