RE: Backport of the integer overflow in the brk system call

To: debian-devel@lists.debian.org
Subject: RE: Backport of the integer overflow in the brk system call
From: "Julian Mehnle" <lists@mehnle.net>
Date: Mon, 8 Dec 2003 14:31:53 +0100
Message-id: <[🔎] EHEOIEJMBFBKCKMPHFJKGECDELAA.lists@mehnle.net>
Reply-to: julian@mehnle.net
In-reply-to: <[🔎] 200312082348.03780.russell@coker.com.au>

Russell Coker wrote:
> On Mon, 8 Dec 2003 23:14, "Julian Mehnle" <lists@mehnle.net> wrote:
> > You cannot verify the IP address *exactly*, but you can verify
> > whether the IP address lies within a range.  Dial-up users could at
> > least register a certain address range, so as to vastly mitigate the
> > attack risk.  Apart from that, as soon as the use of IPv6 broadens,
> > dynamically assigned IP addresses will diminish.
> 
> That will work in some situations, but not in all.

True.  But even though it might not prevent *all* attacks, it will prevent *many*, without incurring additional costs or adding considerable complexity to the Debian Developer apparatus, will it not?

Reply to:

References:
- Re: Backport of the integer overflow in the brk system call
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: Re: Backport of the integer overflow in the brk system call
Next by Date: Re: debsums for maintainer scripts
Previous by thread: Re: Backport of the integer overflow in the brk system call
Next by thread: Re: Backport of the integer overflow in the brk system call
Index(es):
- Date
- Thread