Re: Credentials held unencrypted in memory during runtime

From: Andre.Ziegler <MagicAndre1981_at_live.com>
Date: Wed, 13 Apr 2011 05:01:12 -0700 (PDT)

>
> I think the issue is simply that when the program (TProc) exits, that
> physical memory is freed and can then be allocated to another process.
> If it contains sensitive information then the second process, which
> may be completely unrelated, can see it.

Windows has a Zero Memory Manager Thread which overrides all freed RAM
with Zeros to avoid such things. Check Process Explorer or
Processhacker to see this.

------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2719413

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2011-04-13 14:01:16 CEST

This message: [ Message body ]
Next message: Alexander: "Re: SubWCRev and ternary keywords and $WCRANGE$ colon"
Previous message: Simon Large: "Re: Credentials held unencrypted in memory during runtime"
In reply to: Simon Large: "Re: Credentials held unencrypted in memory during runtime"
Next in thread: Ron Wilson: "Re: Credentials held unencrypted in memory during runtime"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]