Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
yuhong
on June 29, 2016
|
parent
|
context
|
favorite
| on:
How to Compromise the Enterprise Endpoint
Win32k before Win10 used to do TrueType/Type 1 parsing in the kernel, with an entire bytecode virtual machine!
fdsaaf
on June 29, 2016
[–]
So what? Linux, today, has a full bytecode interpreter
internals
on June 29, 2016
|
parent
|
next
[–]
Bigger attack surface in the kernel, for something that doesn't need to be there, and that is historically very difficult to code securely.
ryuuchin
on June 29, 2016
|
parent
|
prev
[–]
grsecurity just disables it outright IIRC (the new one that was added sort of recently, probably year+ at this point).
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: