Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

Basic is a high level languish. APL is a high level anguish.


computers / rocksolid.shared.security / WIndows 10 NTFS bug

SubjectAuthor
* WIndows 10 NTFS bugAnonymous
+- NoneAnonymous
+- WIndows 10 NTFS bugAnonymous
+- NoneAnonymous
+- WIndows 10 NTFS bugAnonymous
`- NoneAnonymous

1
WIndows 10 NTFS bug

<opsec.761.1w9eti@anon.com>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=187&group=rocksolid.shared.security#187

 copy link   Newsgroups: rocksolid.shared.security
Path: i2pn2.org!rocksolid3!.POSTED.rocksolid3!not-for-mail
From: pos...@anon.com (Anonymous)
Newsgroups: rocksolid.shared.security
Subject: WIndows 10 NTFS bug
Date: Fri, 15 Jan 2021 13:25:04 -0800
Organization: rocksolid3 (rocksolidbbs.com)
Message-ID: <opsec.761.1w9eti@anon.com>
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary=8570f228e9ed0e7398d91059f409b2ae5b276108
Injection-Info: rocksolidbbs.com; posting-host="rocksolid3:10.128.3.129";
logging-data="27450"; mail-complaints-to="usenet@rocksolidbbs.com"
 by: Anonymous - Fri, 15 Jan 2021 21:25 UTC
Attachments: win.jpg (image/jpeg)

Ever wanted to crash your NTFS hd under Windows 10 ?
Seems like one command is enough:
C:/:$i30:$bitmap
Can be delivered in many different formats, does not need privileges....perfect

https://www.bleepingcomputer.com/news/security/windows-10-bug-corrupts-your-hard-drive-on-seeing-this-files-icon/

Attachments: win.jpg 
None

<opsec.762.bxb32@anon.com>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=188&group=rocksolid.shared.security#188

 copy link   Newsgroups: rocksolid.shared.security
Path: i2pn2.org!rocksolid2!def5!.POSTED.bogusentry!not-for-mail
From: pos...@anon.com (Anonymous)
Newsgroups: rocksolid.shared.security
Subject: None
Date: Fri, 15 Jan 2021 17:20:04 -0800
Organization: def5
Message-ID: <opsec.762.bxb32@anon.com>
References: <opsec.761.1w9eti@anon.com>
Content-Type: text/plain; charset=UTF-8
Injection-Info: def5.org; posting-host="bogusentry:192.168.1.189";
logging-data="32655"; mail-complaints-to="usenet@def5.org"
 by: Anonymous - Sat, 16 Jan 2021 01:20 UTC

Un*x filesystems suffer a similar fate, this will probably be throw under the rug and never addressed.

--
Posted on def2

Re: WIndows 10 NTFS bug

<opsec.763.ueby6@anon.com>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=189&group=rocksolid.shared.security#189

 copy link   Newsgroups: rocksolid.shared.security
Path: i2pn2.org!rocksolid2!.POSTED.127.117.190.215!not-for-mail
From: pos...@anon.com (Anonymous)
Newsgroups: rocksolid.shared.security
Subject: Re: WIndows 10 NTFS bug
Date: Sat, 16 Jan 2021 04:22:21 -0800
Organization: rocksolid2 (novabbs.org)
Message-ID: <opsec.763.ueby6@anon.com>
References: <opsec.761.1w9eti@anon.com>
Content-Type: text/plain; charset=UTF-8
Injection-Info: novabbs.org; posting-account="def.i2p"; posting-host="127.117.190.215";
logging-data="19086"; mail-complaints-to="usenet@novabbs.org"
 by: Anonymous - Sat, 16 Jan 2021 12:22 UTC

>>cb5a02be0a825bfd8f
>Un*x filesystems suffer a similar fate,
If that is true, what is the command triggering it ?

--
Posted on def2

None

<opsec.764.3obykg@anon.com>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=190&group=rocksolid.shared.security#190

 copy link   Newsgroups: rocksolid.shared.security
Path: i2pn2.org!rocksolid3!.POSTED.rocksolid3!not-for-mail
From: pos...@anon.com (Anonymous)
Newsgroups: rocksolid.shared.security
Subject: None
Date: Sat, 16 Jan 2021 06:09:03 -0800
Organization: rocksolid3 (rocksolidbbs.com)
Message-ID: <opsec.764.3obykg@anon.com>
References: <opsec.761.1w9eti@anon.com>
Content-Type: text/plain; charset=UTF-8
Injection-Info: rocksolidbbs.com; posting-host="rocksolid3:10.128.3.129";
logging-data="4376"; mail-complaints-to="usenet@rocksolidbbs.com"
 by: Anonymous - Sat, 16 Jan 2021 14:09 UTC

>>acdc5a9b4367c051b2
unzip $file, tar -xf $file, cpio -i -F $file, mkdir $garbage, touch $garbage, mv file $garbage, etc. It's similar not the same but from a quick search ntfs and redsea have the same fundamental flaws so this method can also be used. This is not anything special, it's bad filesystem design.
Make inodes with names out of the utf8 range until the filesystem corrupts and loses data. Difficulty is on how resilient the filesystem is, this isn't a new concept so it won't work easily on modern filesystems.
Bonus points for making random shell commands launch or all of the superblocks, journal and root inode lost.
This isn't significant unless you can make a poc that directly targets the root inode and all the superblocks, permanently trashing the filesystem, with great accuracy.

--
Posted on def2

Re: WIndows 10 NTFS bug

<opsec.765.3yyfwv@anon.com>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=191&group=rocksolid.shared.security#191

 copy link   Newsgroups: rocksolid.shared.security
Path: i2pn2.org!i2pn.org!rocksolid2!def5!.POSTED.bogusentry!not-for-mail
From: pos...@anon.com (Anonymous)
Newsgroups: rocksolid.shared.security
Subject: Re: WIndows 10 NTFS bug
Date: Sat, 16 Jan 2021 07:28:42 -0800
Organization: def5
Message-ID: <opsec.765.3yyfwv@anon.com>
References: <opsec.761.1w9eti@anon.com>
Content-Type: text/plain; charset=UTF-8
Injection-Info: def5.org; posting-host="bogusentry:192.168.1.189";
logging-data="9363"; mail-complaints-to="usenet@def5.org"
 by: Anonymous - Sat, 16 Jan 2021 15:28 UTC

>>9bc982e330023840e6
that is not the same by far. exhausting inodes with time is not the same as a oneliner that causes immediate reboot and leaves the hd broken after.

--
Posted on def2

None

<opsec.766.2b91ip@anon.com>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=192&group=rocksolid.shared.security#192

 copy link   Newsgroups: rocksolid.shared.security
Path: i2pn2.org!rocksolid2!def5!.POSTED.bogusentry!not-for-mail
From: pos...@anon.com (Anonymous)
Newsgroups: rocksolid.shared.security
Subject: None
Date: Sat, 16 Jan 2021 16:00:39 -0800
Organization: def5
Message-ID: <opsec.766.2b91ip@anon.com>
References: <opsec.761.1w9eti@anon.com>
Content-Type: text/plain; charset=UTF-8
Injection-Info: def5.org; posting-host="bogusentry:192.168.1.189";
logging-data="32207"; mail-complaints-to="usenet@def5.org"
 by: Anonymous - Sun, 17 Jan 2021 00:00 UTC

>>1a7c630ada66f0c8f1
You missed it could be a one liner, a single touch with the right garbage that causes a reboot from the kernel and blasts away all the recovery and inode data but it will look more complicated than C:/:$i30:$bitmap . This requires information leaks to pull off automatically which could also be automated with a single touch but how big the argv becomes is the problem, archives are a more likely deployment over garbage filename downloads. It's still not the same but similar by the fundamental concept of trusting the users' data, a broken design.

--
Posted on def2

1
server_pubkey.txt

rocksolid light 0.9.7
clearnet tor