Re: Unofficial buildd network has been shut down

To: Andrew Suffield <asuffield@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: Unofficial buildd network has been shut down
From: Thomas Bushnell BSG <tb@becket.net>
Date: 01 Sep 2004 15:29:25 -0700
Message-id: <[🔎] 87hdqh7hdm.fsf@becket.becket.net>
In-reply-to: <[🔎] 20040901214009.GB5917@suffields.me.uk>
References: <20040831183731.GF16699@riva.ucam.org> <87hdqj3pt2.fsf_-_@mrvn.homelinux.org> <[🔎] 20040901053654.GA24577@cloud.net.au> <[🔎] 87eklmjfyy.fsf@mrvn.homelinux.org> <[🔎] 20040901143719.GB23852@khazad-dum.debian.net> <[🔎] 20040901152431.GB18189@rembrandt.csv.ica.uni-stuttgart.de> <[🔎] 20040901160249.GA4116@suffields.me.uk> <[🔎] 20040901163817.GA12167@ping.be> <[🔎] 20040901165247.GA4340@suffields.me.uk> <[🔎] 87zn497kn4.fsf@becket.becket.net> <[🔎] 20040901214009.GB5917@suffields.me.uk>

Andrew Suffield <asuffield@debian.org> writes:

> I would notice because there would be too much code in the binary;
> it's reasonably easy to verify with some simple automation. It would
> require hundreds of instructions to do something like this, which
> would have no corresponding source code. Yes, on occasion I have dug
> into gcc binaries while debugging modifications to gcc.

Ok, without looking, how many instructions should GCC have?  "Hundreds
of instructions" is what percentage of the total?  If a new version
uploads, how would you know?

What is the ration of source-code-lines to source lines?

And, note that Ken Thompson's point is that even your test won't
help.  I can easily add cheat-code to the debugger that refuses to
display the relevant routines and misrepresents the appearance of the
binary.

> It would not be difficult to vary the technique and ensure there are
> no such things hiding in the file. I don't believe in conspiracies so
> large that they could stop some random perl script from spotting the
> hidden code; the sheer *quantity* of hidden trojans you'd need would
> make them rather easy to spot.

Actually, that's the splendid thing.  I have to put them only in the
compiler (if I'm clever enough), and once the system is recompiled,
they will be in all the right tools, and the whole cheat becomes
indetectable.

It's really very clever!

Reply to:

Follow-Ups:
- Re: Unofficial buildd network has been shut down
  - From: Andrew Suffield <asuffield@debian.org>
- Re: Unofficial buildd network has been shut down
  - From: John Hasler <john@dhh.gt.org>

References:
- Re: Unofficial buildd network has been shut down
  - From: Hamish Moffatt <hamish@debian.org>
- Re: Unofficial buildd network has been shut down
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: Unofficial buildd network has been shut down
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: Unofficial buildd network has been shut down
  - From: Thiemo Seufer <ica2_ts@csv.ica.uni-stuttgart.de>
- Re: Unofficial buildd network has been shut down
  - From: Andrew Suffield <asuffield@debian.org>
- Re: Unofficial buildd network has been shut down
  - From: Kurt Roeckx <Q@ping.be>
- Re: Unofficial buildd network has been shut down
  - From: Andrew Suffield <asuffield@debian.org>
- Re: Unofficial buildd network has been shut down
  - From: Thomas Bushnell BSG <tb@becket.net>
- Re: Unofficial buildd network has been shut down
  - From: Andrew Suffield <asuffield@debian.org>

Prev by Date: Re: Please stop the flamewar madeness.
Next by Date: Re: dpkg and selinux
Previous by thread: Re: Unofficial buildd network has been shut down
Next by thread: Re: Unofficial buildd network has been shut down
Index(es):
- Date
- Thread