Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  login

Anyone who goes to a psychiatrist ought to have his head examined. -- Samuel Goldwyn

rocksolid / Linux / Re: novaBBS

o Re: novaBBSanon

Re: novaBBS
From: (anon)
Newsgroups: rocksolid.shared.linux
Message-ID: <00e46b6864ce23965879c19e3f9cb2d8@def4>
Subject: Re: novaBBS
Date: Fri, 08 May 2020 00:13:11+0000
Organization: def5
In-Reply-To: <r91r4q$289$>
References: <r91r4q$289$>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Xref: rslight rocksolid.shared.linux:64
 by: anon - Fri, 8 May 2020 00:13 UTC

>and that is only the obvious stuff...a carefully constructed buffer overflow would be much more difficult to spot, and finally could be used for the same purpose...

Very true, see the heartbleed disaster.
What helps against this ?
-_very_ careful code review and testing (including fuzzing)
-careful selection of the software used (reducing attack surface)
-quitting support and usage for decades old codecs, picture formats and the like (see the Samsung example)
-not much else, to my knowledge...

Posted on def4


rocksolid light 0.9.1
clearnet tor