Comments on: Google Native Client Security/Hacking Contest – Win $8,192 USD! http://www.darknet.org.uk/2009/03/google-native-client-securityhacking-contest-win-8192-usd/ Ethical Hacking, Penetration Testing & Computer Security Sat, 21 Nov 2009 06:04:59 +0000 http://wordpress.org/?v=2.8.6 hourly 1 By: Morgan Storey http://www.darknet.org.uk/2009/03/google-native-client-securityhacking-contest-win-8192-usd/#comment-132575 Morgan Storey Tue, 10 Mar 2009 12:16:40 +0000 http://www.darknet.org.uk/?p=1552#comment-132575 Deezy, I think google would have put more thought into having a security model than the ActiveX guys did who did it pre the big push for web security, and under a limited time frame. From a cursory glance it looks like it is running in a sandbox or virtual OS spawned by the client, something posix compatible. That being said, it looks cool, but I am not sure I like its security implications. Some really nifty stuff can be done with raw x86 code and I am sure some pretty tricky viruses, break-out of the sandbox and it is all over. Deezy, I think google would have put more thought into having a security model than the ActiveX guys did who did it pre the big push for web security, and under a limited time frame. From a cursory glance it looks like it is running in a sandbox or virtual OS spawned by the client, something posix compatible.
That being said, it looks cool, but I am not sure I like its security implications. Some really nifty stuff can be done with raw x86 code and I am sure some pretty tricky viruses, break-out of the sandbox and it is all over.

]]> By: HyPnOtIcHaCkEr http://www.darknet.org.uk/2009/03/google-native-client-securityhacking-contest-win-8192-usd/#comment-132574 HyPnOtIcHaCkEr Tue, 10 Mar 2009 12:16:17 +0000 http://www.darknet.org.uk/?p=1552#comment-132574 1st prize: $8,192.00/1024=8 2nd prize: $4,096.00/1024=4 3rd prize: $2,048.00/1024=2 4th prize: $1,024.00/1024=1 5th prize: $1,024.00/1024=1 its all in megabytes... 1st prize: $8,192.00/1024=8
2nd prize: $4,096.00/1024=4
3rd prize: $2,048.00/1024=2
4th prize: $1,024.00/1024=1
5th prize: $1,024.00/1024=1

its all in megabytes…

]]> By: navin http://www.darknet.org.uk/2009/03/google-native-client-securityhacking-contest-win-8192-usd/#comment-132393 navin Mon, 09 Mar 2009 17:19:41 +0000 http://www.darknet.org.uk/?p=1552#comment-132393 very weird, what with fractals shown on the nativeclient page, and the weird number of $8192 for a prize.....its more of a try to hack my app kinda contest!! very weird, what with fractals shown on the nativeclient page, and the weird number of $8192 for a prize…..its more of a try to hack my app kinda contest!!

]]> By: Deezy http://www.darknet.org.uk/2009/03/google-native-client-securityhacking-contest-win-8192-usd/#comment-132380 Deezy Mon, 09 Mar 2009 16:36:29 +0000 http://www.darknet.org.uk/?p=1552#comment-132380 How is this different than ActiveX?.. Other than it's open and not done by MS How is this different than ActiveX?.. Other than it’s open and not done by MS

]]>