- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - OpenVMS
- >
- Re: Comments on VMS TUD tour of Europe
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-18-2004 05:17 AM
тАО10-18-2004 05:17 AM
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-18-2004 06:36 AM
тАО10-18-2004 06:36 AM
Solutionfwiw, There is a similar thread here from Ian in:
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=705846
It would indeed be interesting to her more attendee feedback.
Regards,
Hein.
----- sue's message from comp.os.vms -----
Dear Newsgroup,
Hello, from Vienna Austria. This is our fourth stop on the Technical
update tour. We have had an excellent time. We started in Stockholm
Sweden. We were in the HP office in Kista. The event sold out there
and a few people ended up sitting on the floor, we then moved to
Holland, Utrect (sp?)we had one spare seat on the first day. Then off
to London and now Austria. Its funny no matter where I go I am always
touched at how kind the VMS people are. The audience is always very
open to what we have to say about where are going and what we are
doing now. Hopefully people will post their own thoughts.
We are off to the last technical update day in Germany on Friday.
Warm Regards,
Sue
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-18-2004 06:42 AM
тАО10-18-2004 06:42 AM
Re: Comments on VMS TUD tour of Europe
I did see the other thread here, but it didn't contain much in the way of user comments on the event itself, more like "are you going" , etc.
It was Sue's note on cov (hope to see user comments) that got me to start this thread.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-18-2004 07:01 PM
тАО10-18-2004 07:01 PM
Re: Comments on VMS TUD tour of Europe
of the many, many things passing by, the one that comes to my mind immediately is one point by Hoff.
In the IA64 version of VMS, the Stacks will be protected against execution.
Rationale: more and more U*X progs are ported, and A LOT (all?) of that is C-stuff. And with C, the programmer will have to specifically code to guard against buffer-overflows, which is often omitted or forgotten (from laziness or ignorance...).
As a result, there have been an un-VMS-sy amount of CERT warnings, yes, all for exploits of ported stuff. Since most exploits abuse stack manipulation & execution, making the stack non-executable prevents this.
In a private discussion afterward with Hoff I wondered why it was not also introduced on Alpha. "Because that MIGHT break existing code. Bad code, but running code".
I wondered if the feature might be turned on/off under control of Logical, or, if needing to be done very early, a SYSGEN param so as to give it to "the" community, while allowing the oddball, if at all existant. He liked the idea, and if no dragons turn up on thorough investigation, it would only synchronise Alpha and IA64 better.
Defenitely NOT for 8.2 though!!
And maybe you can have a look at
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=716858
as well.
Cheers.
Have one on me.
Jan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-18-2004 08:00 PM
тАО10-18-2004 08:00 PM
Re: Comments on VMS TUD tour of Europe
Can't comment on the TUD, yet. It'll begin the day after tomorrow here in Germany.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-19-2004 09:14 AM
тАО10-19-2004 09:14 AM
Re: Comments on VMS TUD tour of Europe
I think the secure email server is potentially a great idea.
I'm slightly concerned that the rules for licence transfer have changed. hp want to know if you move a licence from one i64 system to another. (previously if they where the same class DEC did not worry). As long as it is a simple thing to do and costs no money it will be fine.
Guy Peleg and Norm L. from RDB did a presentation that they had just written which was excellent and I would like to see more if it.
The marketing guy Martin Riley was interesting without too much fluff. You can be sure plenty of people wanted to talk to him about VMS marketing :-)
Purely Personal Opinion
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-19-2004 08:17 PM
тАО10-19-2004 08:17 PM
Re: Comments on VMS TUD tour of Europe
Given Jan's remark, there has been quit some concern on the CERN recommendations - all 5 in the last few years did have to do with ported OpenSource (=U*x) programs. Hopefully, the attitude and dicipline towards security and stability, that IMHO is lacking (in whatever degree) in that community, is NOT ported to VMS.
The way stack overflow is now prevented has it's drawbacks. In stead of silently taking over the system and comprimising data consistency, the system will crash. Hoff agreed it's not the best solution....
OpenVMS Developer & System Manager
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-19-2004 08:30 PM
тАО10-19-2004 08:30 PM
Re: Comments on VMS TUD tour of Europe
I think it has always been possible to catch a stack over/underflow by putting guard pages around it, but I don't see a way to limit the damage in kernel mode, either.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-20-2004 12:23 AM
тАО10-20-2004 12:23 AM
Re: Comments on VMS TUD tour of Europe
http://www.google.com/groups?selm=6ec1251e.0204030914.7143730f%40posting.google.com&output=gplain
Purely Personal Opinion
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-20-2004 08:47 AM
тАО10-20-2004 08:47 AM
Re: Comments on VMS TUD tour of Europe
>Excuse me, but I don't get it. What has a stack overflow (which one are you talking about, by the way?) have to do with disallowing code execution within the stack's memory area?
Without wanting to give away too much... if a program has a buffer allocated to the stack which is vulnerable to overflow, then you can send it a string which will overwrite the call frame, including the return address. If you arrange for the return address to point to a stack location, the same string can contain the code to be executed. So, by returning from the routine, you're transferring control to the bad guy's code. From there, the sky's the limit.
By marking the stack "no execute" you prevent this entire class of exploit. And since no normal programmer in their right mind would ever want to execute anything on the stack, you don't break anything either :-)