The more I look at AWS and the more I cannot understand how IBM missed the opportunity of using massive zSeries installs with Linux LPARs for cloud computing. All the I/O, security, etc. problems had already been solved. CloudHSM? Ha, z15-TO1 & friends, I/O? Ha… mainframe!
-
I'm curious - when did you write this exploit?
This was probably 3 years ago? But running on a slightly outdated ADCD version of z/OS for testing. We had a real mainframe for the actual competition, but I don't think anyone managed to solve it in time.
-
-
If he gives us access again without the five books of legal paperwork they once sent me I’d be happy to play again :)
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
So where did you inject the shellcode into? I'm curious as to what was running in USS that you managed to exploit.
-
I wrote my own trivially vulnerable app. My point here is it would've been a lot harder, or impossible, to exploit on other OSes because z/OS is two decades behind in basic security mitigations as far as I can tell.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.