Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  nodelist  faq  login

He who is content with his lot probably has a lot.


rocksolid / Linux / Re: novaBBS

SubjectAuthor
o Re: novaBBSanon

1
Subject: Re: novaBBS
From: anon
Newsgroups: rocksolid.shared.linux
Organization: def5
Date: Fri, 8 May 2020 00:13 UTC
References: 1
Path: i2pn2.org!rocksolid2!def5!POSTED.localhost!not-for-mail
From: ano...@anon.com (anon)
Newsgroups: rocksolid.shared.linux
Message-ID: <00e46b6864ce23965879c19e3f9cb2d8@def4>
Subject: Re: novaBBS
Date: Fri, 08 May 2020 00:13:11+0000
Organization: def5
In-Reply-To: <r91r4q$289$1@novabbs.com>
References: <r91r4q$289$1@novabbs.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
View all headers

and that is only the obvious stuff...a carefully constructed buffer overflow would be much more difficult to spot, and finally could be used for the same purpose...

Very true, see the heartbleed disaster.
What helps against this ? -_very_ careful code review and testing (including fuzzing)
-careful selection of the software used (reducing attack surface)
-quitting support and usage for decades old codecs, picture formats and the like (see the Samsung example)
-not much else, to my knowledge...

Posted on def4


1
rocksolid light 0.7.2
clearneti2ptor