Re: Virus Checking - COMPLETELY UNENCUMBERED!

To: debian-devel@lists.debian.org
Subject: Re: Virus Checking - COMPLETELY UNENCUMBERED!
From: Richard Braakman <dark@xs4all.nl>
Date: Thu, 16 May 2002 10:10:53 +0300
Message-id: <[🔎] 20020516071053.GA951@cs140102.pp.htv.fi>
In-reply-to: <[🔎] 87bsbh6nha.fsf@ataraxia.vdst-ka.inka.de>
References: <[🔎] 1021202211.532.5.camel@zion> <[🔎] 200205130843.g4D8hjoN016167@tornado> <[🔎] 877km6elcf.fsf@ataraxia.vdst-ka.inka.de> <[🔎] 1021427092.5009.42.camel@scrooge> <[🔎] 877km6b0n4.fsf@ataraxia.vdst-ka.inka.de> <[🔎] 20020514204111.B23809@ece.ubc.ca> <[🔎] 20020515060532.GB961@cs140102.pp.htv.fi> <[🔎] 20020515074501.GA14385@trinity.unimelb.edu.au> <[🔎] 87bsbh6nha.fsf@ataraxia.vdst-ka.inka.de>

On Thu, May 16, 2002 at 12:43:45AM +0200, Hilko Bengen wrote:
> Tim Bell <bhat@trinity.unimelb.edu.au> writes:
> > For decompressors which can operate in a pipe (like bzip2, gzip), is
> > there anything much wrong with doing the decompressing something
> > like this:
> > 
> >     $ cat $TMPFILE | bzcat | head -c $SIZELIMIT > $TMPFILEOUT
> > 
> > ?  
> 
> No. That is exactly what AMaViS-ng does. And security is the reason
> why AMaViS-ng only supports unpacking programs that can unpack things
> to stdout.

Actually, I think there is.  It makes it possible to hide a virus in
the part of the archive beyond $SIZELIMIT.  It would be better to reject
the attachment if it is too large to scan.

Richard Braakman


-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Wouter Verhelst <wouter@debian.org>

References:
- Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Matthew Grant <grantma@anathoth.gen.nz>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: David Findlay <david@davsoft.com.au>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Hilko Bengen <bengen@vdst-ka.inka.de>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Brian May <bam@snoopy.apana.org.au>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Hilko Bengen <bengen@vdst-ka.inka.de>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Luca Filipozzi <lfilipoz@debian.org>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Richard Braakman <dark@xs4all.nl>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Tim Bell <bhat@trinity.unimelb.edu.au>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Hilko Bengen <bengen@vdst-ka.inka.de>

Prev by Date: Re: httpd on install cd
Next by Date: boot-floppies and tetex
Previous by thread: Re: Virus Checking - COMPLETELY UNENCUMBERED!
Next by thread: Re: Virus Checking - COMPLETELY UNENCUMBERED!
Index(es):
- Date
- Thread