|
|
blowfish Mentor Join Date: 2002
|
this is very nice. openbsd's focus has always been fixing the most fundamental bugs before they become exploits.
__________________
Go and tell the king that the sky is falling in when it's not (maybe not). chat.taucher.net, #bsd
|
04-21-2003, 10:24 AM |
SodaPhish Port Monkey Join Date: Jul 2002
|
...the real question I have is how many buffer k1dz are out there checking out the CVS tree and diffing against previous versions trying to find the "definate buffer overflows" Theo mentions! That's frightening, because I'm sure some of those buffers are in code that is in use lesewhere too!
...I absolutely admire these efforts. I just wish everyone would make similar efforts! __________________
-C sodaphish.com |
04-21-2003, 10:39 AM |
Walrus28IF Port Monkey Join Date: Feb 2003
|
not hard to find in other programs, just cat *.c | grep strcpy and check out what's going on, if it's ever possible to remotly overflow a buffer. I "helped" a little bit with this conversion proecess, mainly in that i pointed out some stc* functions, tried to fix them, but my fixes diff's didnt work, so 2 or 3 other people gave it a shot and the changes finally went into the tree. A simple example to see the difference between safe uses of str* functions verses strl or strn functions would be to look at x-chat's source. The only potentiall unsafe instance i saw in x-chats source is in the dcc source where the file name is copied into a buffer without checking it's bounds. The problem with exploiting that is that UNIX places limitations to how long a filename can be. So if you can fake the filename of a file that you send to someone on x-chat you could possible remotly crash it. But hey, whado I know, i'm still a C newbie. |
04-21-2003, 01:33 PM |
Looking for our FreeBSD Forums? We have moved them off our main page,just follow the link to our FreeBSD Forums page.
Copyright © 2009, WEBSERVER CONSUMER GUIDE
Please note:
(1) FreeBSD is a registered trademark of The FreeBSD Foundation.
(2) WEBSERVER CONSUMER GUIDE is in no way affiliated with The FreeBSD Foundation