Re: Virus Checking - COMPLETELY UNENCUMBERED!

To: debian-devel@lists.debian.org
Subject: Re: Virus Checking - COMPLETELY UNENCUMBERED!
From: Nick Phillips <nwp@nz.lemon-computing.com>
Date: Fri, 17 May 2002 10:23:37 +1200
Message-id: <[🔎] 20020516222337.GO7232@hoiho.nz.lemon-computing.com>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] Pine.LNX.4.21.0205161201350.398-100000@rock.grep.be>
References: <[🔎] 20020516071053.GA951@cs140102.pp.htv.fi> <[🔎] Pine.LNX.4.21.0205161201350.398-100000@rock.grep.be>

On Thu, May 16, 2002 at 12:02:34PM +0200, Wouter Verhelst wrote:
> On Thu, 16 May 2002, Richard Braakman wrote:
> > On Thu, May 16, 2002 at 12:43:45AM +0200, Hilko Bengen wrote:
> > > No. That is exactly what AMaViS-ng does. And security is the reason
> > > why AMaViS-ng only supports unpacking programs that can unpack things
> > > to stdout.
> > 
> > Actually, I think there is.  It makes it possible to hide a virus in
> > the part of the archive beyond $SIZELIMIT.  It would be better to reject
> > the attachment if it is too large to scan.

So to check whether it actually *is* too big, you do the "head" thing and
check the length you got back. If it == the limit you applied with head,
you reject.

-- 
Nick Phillips -- nwp@lemon-computing.com
Beware the one behind you.


-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Richard Braakman <dark@xs4all.nl>
- Re: Virus Checking - COMPLETELY UNENCUMBERED!
  - From: Wouter Verhelst <wouter@debian.org>

Prev by Date: Heads up for PAM instability as we move to 0.75
Next by Date: nomarch-1.2 - Problems with RLE patent 4,586,027
Previous by thread: Re: Virus Checking - COMPLETELY UNENCUMBERED!
Next by thread: Re: Virus Checking - COMPLETELY UNENCUMBERED!
Index(es):
- Date
- Thread