Help with Algorythm to test if a progrem is secure,
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello,...
After a related post i thought that i should design an a algorithm to
test if a program is secure.
1.Google / IRC for the program name || Security || Trojan ||
hacks etc .. if found the don't use that program.
2.If possible read source code or give it to some body for finding stuff.
3.Install it on a Virtual Machine (qemu) on a pc without network
connection (physical).
Test for new open ports and Google for them.
Test for pending connection (netstat -a 127.0.0.1)
4.Connect the Virtual machine to a small LAN (with a LOT of domains )
search for iptables or other related strange logs.
make some testes (Are there strange DNS quarries ? )
5.install and connect the pc to a real network.
- --
- --
Add me as BCC not CC.
Could you at least use man ?
Jabka Atu (aka mha13/Mashrom Head) || bsh83.blogspot.com
- --
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iQIVAwUBRzjP9m9p6JnF9I1qAQKfUA/7B/m5ngCMz0iClpHGrvKiE1Ma1tDzqY4b
WQVPJuw2T3IuWUTdwlGJtDn9Jd94hN9LGhIKh6GYFahBEUGAEaRM5bazv4gFzywi
7Kt61GC+RqAF46I+DuycrEpcy4W3pydOUSyuc6KwTz0F11lm0b1oPxElRj5ptVx1
PX+0p2EGPuYg9buVD9AQJ8rQxrk4bNWHXVlGd6qQo4KelEXCZVNjT6HkH45rbKSA
ZG0maz51AhClqCT1L1WsOxb8DnxZTJBY5Gi8Jwjlp0qxuZRkNkB77jXig2UuDJgP
BCpHTgvIse7XzyR+zt2Rzdaj9gh7DUBkiF508dkUOdd/2Y7rkcgLgYhRKVEMQdv+
dTEEplCXC9WecdZvyMaFD9IV265OPm4xSpVY4n2xl+taC7H07aPfftqQ/59NZYnw
rX9BrSD+P5GUxG9794p9r1NUB21jGMU/fpSxsGjGgWJ6Lx7zUL4vktIyipUOF042
robhMapjU44l8puLBbKKIitbZI48DLuBshTafzSrudH63k1d7HIeMsb9rCjB+uVZ
GjT6fScnhAiaKoFogVtm01Qqnft4aSIzL904UhAxhexBWa/r6X5r878fWkqzNx+S
mhY0D9ttvC74psY90VGQ99YR/euG7waV10gaDeovbuLGJ/BV2D/WTJ5CsNF8PgTV
wiA2y8wt4EM=
=YfbF
-----END PGP SIGNATURE-----
Reply to: