I want more bandwidth

Jan. 31st, 2005 12:56 am
bwh: (Default)
[personal profile] bwh
I discovered a security flaw that I believe is present in various Unix/Linux programs due to the design of a particular API. In order to find out how widespread the problem is, I initially did a web search, but that didn't help much; I don't think much source code is visible to search engines. Then I manually downloaded and checked through a few key source packages such as interpreters and thankfully found them to be free from this flaw. Finally I resolved to scan the Debian source archive automatically. After a few hours' hacking with Python I have something that seems to work. However, the size of the archive is currently around 10 GB (not including contrib and non-free) and I have a 300 kbps connection to the Internet so this is going to saturate that connection for the next 4 days or so...
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Date: 2005-01-31 08:37 am (UTC)
emperor: (Default)
From: [personal profile] emperor
I have a source and i386-binary mirror I could run your script on for you?

Date: 2005-01-31 11:03 am (UTC)
From: [identity profile] womble2.livejournal.com
You have mail.

Date: 2005-01-31 01:33 pm (UTC)
ext_8103: (Default)
From: [identity profile] ewx.livejournal.com
What's the flaw?

Date: 2005-01-31 09:11 pm (UTC)
From: [identity profile] womble2.livejournal.com
Ask me (or Ian Jackson or fanf) in person as I don't have a secure channel through which to tell you.
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Profile

bwh: (Default)
bwh
My Website

February 2011

S M T W T F S
  12345
6789101112
13141516171819
20212223 242526
2728     

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Page generated Jan. 8th, 2026 07:23 pm
Powered by Dreamwidth Studios