Secure Applications

Articles Metasploit Framework Windows Tutorial Remote Desktop Connection Windows Processes That May Be Dangerous How-To use NetCat a Tutorial Common Linux Commands Common Ports Netcat Commands HTTP Response Codes War-Google Hack Terms Wardriving Avoiding Social Engineering and Phishing Attacks Intrusion Detection on Linux Linux Intrusion Detection Penetration Testing Guide Penetration Testing Tools Social Engineering Fundamentals, Part I: Hacker Tactics Social engineering (computer security) The Psychology of Social Engineering The Archives General GSO GovernmentSecurity.org News & Suggestions In The News Open Topic General Security Information Trash Can Exploit & Vulnerability Mailing List Archives Trial Member Forum Product and Program Reviews GSO Tutorials System Security Windows Systems Beginners Section Linux & Unix Systems File Downloads Exploit Research & Discussion Trojan & Virus Errata Networking Security / Firewall / IDS / VPN / Routers System Hardening E-Mail Security Wifi Security Trial Member Uploads Upload discovered Trojans & Mal ware GSO Programming Section C , C++ , VC++ Visual Basic .NET Perl /CGI Java/Javascript PHP/XML/ASP/HTML Assembly + Other The Cork Board Network Security Consultant Directory Network Security Jobs The Archives Encryption Information General Network Security Internet Anonymity HTTP Protocol Security Linux Security MS IIS Information Exploit Articles Programming / Tool Design GSO Software Projects Public Downloads Microsoft Security Questions and Papers		Help - Search - Member List - Calendar Full Version: Secure Applications GovernmentSecurity.org > System Security > System Hardening tonikgin Jul 12 2004, 09:46 PM I got to thinking again recently about security on the physical layer, and came to a few points. Programmers can only work within the guidelines of the hardware given to them, today most hardware devices are still relitavely simple or blind when it comes security. The 32-bit architechture compared w/ 64-bits provides little doubt that buffer attacks against memory processes are only a little more secure on a 64-bit architechture. We have commercially available routers being to make themseleves available w/ capabilities to prevent or minimized the affects of DoS attacks. What I am getting too, is that i think we need to stop sticking to mainstream ideas when developing hardware componets. Hardware makers for computer companies need to invest in new technologies for the consumers and retail. Ones that give the programmer more power to develop complex applications and processes that render or perform flawlessly under little to no stress, while also having more control over security. </rant> tweakz20 Jul 13 2004, 02:59 AM more complex = more problems... when it comes to saying a buffer can only hold, say, 20 characters, and then doesn't make sure it actually is =< 20, what is hardware gonna do to pervent programmer's error? or maybe there's an HTTP exploit that directly sends commands to shell, hardware's just doing what it's told... mostly all i can think of that hardware can stop is generic overflows... and they are taking preventive measures for those (ex.. amd made a processor to "stop buffer overflows").. there are very many types of attacks hardware can't do anything with though good thinking though This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here. Invision Power Board © 2001-2005 Invision Power Services, Inc.