1995-10-10 - Re: java security concerns

Header Data

From: “Perry E. Metzger” <perry@piermont.com>
To: m5@dev.tivoli.com (Mike McNally)
Message Hash: 129c51ac81081b890eaeaa40eca889c12034c2beae0f0f70c977378e5abd445a
Message ID: <199510101500.LAA02245@jekyll.piermont.com>
Reply To: <9510101301.AA28597@alpha>
UTC Datetime: 1995-10-10 15:01:17 UTC
Raw Date: Tue, 10 Oct 95 08:01:17 PDT

Raw message

From: "Perry E. Metzger" <perry@piermont.com>
Date: Tue, 10 Oct 95 08:01:17 PDT
To: m5@dev.tivoli.com (Mike McNally)
Subject: Re: java security concerns
In-Reply-To: <9510101301.AA28597@alpha>
Message-ID: <199510101500.LAA02245@jekyll.piermont.com>
MIME-Version: 1.0
Content-Type: text/plain



Mike McNally writes:
>  > I can
>  > physically remove all the "dangerous" calls from a Postscript
>  > interpreter and still have it be useful.
> 
> I don't see the difference.  An interpreter is an interpreter.

I suppose most of this is dead obvious to me because I work in
security every day, but it seems that some otherwise smart people don't
see the point I'm making, repeatedly.

As an exercise to the reader compare the following two tasks in
difficulty.

1) Find a bug that lets you execute arbitrary programs unintentionally
   from a program that contains instances of the 'fork()' system call.

2) Find a bug that lets you execute arbitrary programs unintentionally
   from a  program that contains *no* instances of the 'fork()' system call.

[hint: it is much harder to get a program to do something that it has
no code at all to do than to get it to do a buggy form of a something
it already does.]

Perry

Thread

• Return to October 1995

• Return to “Aleph One <aleph1@dfw.net>”
• Return to “Brian Davis <bdavis@dg.thepoint.net>”
• Return to “cmcmanis@scndprsn.Eng.Sun.COM (Chuck McManis)”
• Return to “fc@all.net (Dr. Frederick B. Cohen)”
• Return to “John Lull <lull@acm.org>”
• Return to “m5@dev.tivoli.com (Mike McNally)”
• Return to “Michael Froomkin <froomkin@law.miami.edu>”
• Return to ““Perry E. Metzger” <perry@piermont.com>”
• Return to “Ray Cromwell <rjc@clark.net>”

• Return to “sameer <sameer@c2.org>”

• 1995-10-10 (Mon, 9 Oct 95 17:29:54 PDT) - Re: java security concerns - cmcmanis@scndprsn.Eng.Sun.COM (Chuck McManis)
  • 1995-10-10 (Mon, 9 Oct 95 17:57:43 PDT) - Re: java security concerns - sameer <sameer@c2.org>
    • 1995-10-10 (Mon, 9 Oct 95 21:42:35 PDT) - Re: java security concerns - Ray Cromwell <rjc@clark.net>
      • 1995-10-10 (Mon, 9 Oct 95 21:58:03 PDT) - Re: java security concerns - “Perry E. Metzger” <perry@piermont.com>
        • 1995-10-10 (Mon, 9 Oct 95 22:36:21 PDT) - Re: java security concerns - Aleph One <aleph1@dfw.net>
          • 1995-10-10 (Mon, 9 Oct 95 22:48:05 PDT) - Re: java security concerns - “Perry E. Metzger” <perry@piermont.com>
            • 1995-10-10 (Mon, 9 Oct 95 23:16:10 PDT) - Re: java security concerns - Ray Cromwell <rjc@clark.net>
          • 1995-10-10 (Tue, 10 Oct 95 06:02:10 PDT) - Re: java security concerns - m5@dev.tivoli.com (Mike McNally)
            • 1995-10-10 (Tue, 10 Oct 95 08:01:17 PDT) - Re: java security concerns - “Perry E. Metzger” <perry@piermont.com>
              • 1995-10-11 (Tue, 10 Oct 95 22:51:12 PDT) - Re: java security concerns - Ray Cromwell <rjc@clark.net>
                • 1995-10-11 (Wed, 11 Oct 95 06:19:04 PDT) - Re: java security concerns - “Perry E. Metzger” <perry@piermont.com>
        • 1995-10-10 (Tue, 10 Oct 95 03:22:23 PDT) - Re: java security concerns - fc@all.net (Dr. Frederick B. Cohen)
      • 1995-10-10 (Tue, 10 Oct 95 03:44:37 PDT) - Re: java security concerns - fc@all.net (Dr. Frederick B. Cohen)
  • 1995-10-10 (Tue, 10 Oct 95 10:14:09 PDT) - Re: java security concerns - John Lull <lull@acm.org>
    • 1995-10-11 (Wed, 11 Oct 95 08:59:53 PDT) - Re: java security concerns - Michael Froomkin <froomkin@law.miami.edu>
    • 1995-10-12 (Thu, 12 Oct 95 12:37:02 PDT) - Re: java security concerns - Brian Davis <bdavis@dg.thepoint.net>