security holes in *nix

This is a discussion on security holes in *nix within the A Brief History of Cprogramming.com forums, part of the Community Boards category; earlier this year I told you about a class many of my friends were taking in which 60% of the ...

  1. #1
    Registered User axon's Avatar
    Join Date
    Feb 2003
    Posts
    2,572

    security holes in *nix

    earlier this year I told you about a class many of my friends were taking in which 60% of the grade was to find an x number of holes in a nix system...they even made it to slashdot http://it.slashdot.org/article.pl?si...&tid=1&tid=106

    and for those who don't know, Bernstein is the guy who won a lawsuit aganist the US government some years back for an incryption algo.

    some entropy with that sink? entropysink.com

    there are two cardinal sins from which all others spring: Impatience and Laziness. - franz kafka

  2. #2
    Registered User axon's Avatar
    Join Date
    Feb 2003
    Posts
    2,572
    here is a quiz that the professor gave out in the beginning of the semester: http://cr.yp.to/2004-494/0830-quiz.pdf the student had 50minutes for it - prof recommended that students who had less than 10 right should drop the course - many did.

    some entropy with that sink? entropysink.com

    there are two cardinal sins from which all others spring: Impatience and Laziness. - franz kafka

  3. #3
    Magically delicious LuckY's Avatar
    Join Date
    Oct 2001
    Posts
    856
    Very interesting reading. Why don't you showboat a little and tell us which discoveries were yours? (There is a question mark there, but I assure you that was a rhetorical question). Thanks for the intriguing info.

  4. #4
    Yes, my avatar is stolen anonytmouse's Avatar
    Join Date
    Dec 2002
    Posts
    2,544
    I think anyone in a fourth year CS course who can't get ten of them right in 10 minutes is in serious trouble. Most of the vulnerabilities are caused by buffer overruns, including scanf("%s", ...).

  5. #5
    Registered User axon's Avatar
    Join Date
    Feb 2003
    Posts
    2,572
    >>Very interesting reading. Why don't you showboat a little and tell us which discoveries were yours?<<

    non, I wasn't in this class. But I felt like I was, as everyone in it would not shut up about finding holes.

    some entropy with that sink? entropysink.com

    there are two cardinal sins from which all others spring: Impatience and Laziness. - franz kafka

  6. #6
    S Sang-drax's Avatar
    Join Date
    May 2002
    Location
    Göteborg, Sweden
    Posts
    2,072
    How many did pass the class?
    Last edited by Sang-drax : Tomorrow at 02:21 AM. Reason: Time travelling

Popular pages Recent additions subscribe to a feed

Similar Threads

  1. Freedom Internet Security
    By BestGameMovie in forum Tech Board
    Replies: 3
    Last Post: 06-03-2005, 10:28 PM
  2. Security on automated home
    By stimpyzu in forum A Brief History of Cprogramming.com
    Replies: 4
    Last Post: 04-11-2004, 02:14 AM
  3. Painfully true but funny...
    By shaik786 in forum A Brief History of Cprogramming.com
    Replies: 8
    Last Post: 04-01-2003, 03:39 PM
  4. Find the Security Holes in this code
    By MassiveAttack in forum C Programming
    Replies: 4
    Last Post: 04-24-2002, 07:45 PM

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21