[svlug] buffer overflow exploit in /usr/bin/false

Mark Willey willey at etla.net
Fri Aug 28 18:06:25 PDT 1998

Previous message: [svlug] BALUG Meeting - Tuesday Sept 15th 1998! (fwd)
Next message: [svlug] >64MB caching performance of Linux on a motherboard
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Seems like they're popping up everywhere.  :)

What I'm curious about is "Is there a progammatic method for determining if
a given source code has potential buffer overrun holes?"  If anyone knows
about a research project or product that is doing this, please speak up.
It would be nice to give people tools that would assist them to verify that
their source codes are safe.  (Something that would not have many false
positives, ie better than "grep strcpy .....")  :)

Mark

PS. The teaser that /usr/bin/false is vunerable is, uh....  false.  ;-)
    Go look at it.  :)


--
echo "unsubscribe svlug" | mail majordomo at svlug.org
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ to unsubscribe

Previous message: [svlug] BALUG Meeting - Tuesday Sept 15th 1998! (fwd)
Next message: [svlug] >64MB caching performance of Linux on a motherboard
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the svlug mailing list