1995-10-25 - Re: Does your software?

Header Data

From: fc@all.net (Dr. Frederick B. Cohen)
To: asb@nexor.co.uk (Andy Brown)
Message Hash: 0b66a524810796756c6bb392837e3eab72783c2d773d0f0f4b934aab4b25157d
Message ID: <9510251721.AA00948@all.net>
Reply To: <Pine.SOL.3.91.951025132835.16584C-100000@eagle.nexor.co.uk>
UTC Datetime: 1995-10-25 17:25:00 UTC
Raw Date: Wed, 25 Oct 95 10:25:00 PDT

Raw message

From: fc@all.net (Dr. Frederick B. Cohen)
Date: Wed, 25 Oct 95 10:25:00 PDT
To: asb@nexor.co.uk (Andy Brown)
Subject: Re: Does your software?
In-Reply-To: <Pine.SOL.3.91.951025132835.16584C-100000@eagle.nexor.co.uk>
Message-ID: <9510251721.AA00948@all.net>
MIME-Version: 1.0
Content-Type: text


> 
> On Tue, 24 Oct 1995, Dr. Frederick B. Cohen wrote:
> 
> > Actually, not true.  The global fixed-length buffers, shared variables,
> > and lack of prototypes provide protection against allocation problems
> > which sould result in denial of service, corruptions at near-capacity
> > load, and other similar security problems.
> 
> Please explain how a lack of prototypes (and shared variables for that 
> matter) provide protection against the problems you describe.

The design of the server is documented in a white paper stored in our
W3 server.  Look under the URL below and select:

	Management Analytics -> Software -> Daemons -> White Paper

-- 
-> See: Info-Sec Heaven at URL http://all.net
Management Analytics - 216-686-0090 - PO Box 1480, Hudson, OH 44236




Thread