Re: mICQ roundup
On Sun, Feb 16, 2003 at 04:49:17PM +1000, Anthony Towns wrote:
> On Sun, Feb 16, 2003 at 05:42:06PM +1100, Hamish Moffatt wrote:
> > That's bullshit, you know. You deliberately obfuscated the check for the
> > Debian and for the maintainer's name. The code to print the message is
> > hidden in some undecipherable code. The same code could easily exec 'rm
> > -f $HOME' for all we can tell with a casual look at the source code.
>
> Uh, have you taken a casual look at the source code? It calls a "print"
> function on some strings -- the only way it could exec 'rm -f $HOME'
> is if it's somehow buffer overruning that print function, or something
> similar. The only thing you can't tell from a casual glance at the source
> code is *what* it's printing.
So this version only obfuscates the message. Who says the next version
won't include pre-compiled code for a whole function?
I didn't bother to analyse all of the M_print function so I'm not sure
that it doesn't contain buffer overflows.
Ruediger seems untrustworthy. No doubt I will receive more threatening
emails from Gabucino for this post.
Hamish
--
Hamish Moffatt VK3SB <hamish@debian.org> <hamish@cloud.net.au>
Reply to: