mindhex - Slashdot User

Comment Re:This is an exploit for virtual servers (Score 1) 393

by mindhex on Wednesday April 22, 2009 @05:14PM (#27679307) Attached to: Intel Cache Poisoning Is Dangerously Easy On Linux

Comment from theinvisiblethings blog: "I doubt this will work from a xen domU or dom0 context because 1) AFAIK you don't have access to MTRR registers from there 2) their kernels are running in ring1 not ring0." Maybe openvz/vserver virtualization restrict access to MTRR somehow too... why you so sure?

Comment This is an exploit for virtual servers (Score 5, Informative) 393

by ashmodai9 on Wednesday April 22, 2009 @04:10PM (#27678425) Attached to: Intel Cache Poisoning Is Dangerously Easy On Linux

As many have pointed out, there's no real point to "exploiting" a machine that you already have full (root) access to - with one exception: virtual servers.

The whole 'danger' of this exploit is that it enables a virtual server's "privileged" "root" user to gain hypervisor access, which is equivalent to taking over the entire physical machine and any/all other virtual servers hosted on said machine.

If you don't run a virtual server farm, this exploit means absolutely nothing to you. If you do, it's a very easy, scary way whereby any of your "clients" can take over your physical machines and access all of the other virtual servers hosted on the same piece of hardware.

Aquaduct Bike Purifies Water As You Pedal 60

Posted by timothy on Thursday October 09, 2008 @01:42PM from the arrive-thirsty dept.

Mike writes "Winner of the '08 Innovate or Die competition sponsored by Google and Specialized, the Aquaduct is a pedal-powered concept vehicle that transports, filters, and stores water. The design has massive implications for communities where safe and secure sources of drinking water are not readily accessible."

Comment Re:many are back but see dates of last update (Score 4, Interesting) 505

by ashmodai9 on Thursday September 25, 2008 @01:51PM (#25154321) Attached to: State of Kentucky Seizes Control of 141 Domain Names

I think you are right, because I checked again, and only 10 or so domains currently are owned by the State of Kentucky. Yesterday, the number was much higher - over half - and it wasn't a matter of registrar compliance (I don't think the individual registrars had a say in the matter), ICANN was the one who handed control of the domains to the State.

Submission + - State of Kentucky steals 141 domain names

Submitted by

ashmodai9

on Thursday September 25, 2008 @12:48PM

ashmodai9 writes: "In a rather interesting (read: insane) decision, a district judge in the State of Kentucky has awarded control of 141 online gambling domain names to the governor of the state. Most of these are hosted offshore, and very few are registered under US domain name registrars, let alone registrars in the State of Kentucky (are there any?). You can check out the press release here, and confirm that the Commonwealth of Kentucky does in fact now "own" these domain names by performing a WHOIS search on any of the domains listed here."

Slashdot Top Deals