Full Disclosure mailing list archives
RE: Re: bzip2 bombs still causes problems in antivirus-software
From: Steve Wray <steve.wray () paradise net nz>
Date: Sun, 11 Jan 2004 09:24:13 +1300
Dr. Peter Bieringer Steve Wray schreibt:It would probably be a good idea to implement ulimit restrictions on the user that the software runs as.Mostly "root"...and this will cause sure other fun, looks like some software didn't expect that file system runs out-of-space
and still
hang and have no fail-safe mechanism here...
If your antivirus software (which, by definition, is routinely exposed to 'malware') runs as root, then you have worse potential issues than just a bzip bomb consuming resources. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- bzip2 bombs still causes problems in antivirus-software Dr. Peter Bieringer (Jan 09)
- RE: bzip2 bombs still causes problems in antivirus-software Steve Wray (Jan 09)
- Re: bzip2 bombs still causes problems in antivirus-software Dr. Peter Bieringer (Jan 10)
- RE: Re: bzip2 bombs still causes problems in antivirus-software Steve Wray (Jan 10)
- RE: Re: bzip2 bombs still causes problems in antivirus-software Dr. Peter Bieringer (Jan 12)
- Re: bzip2 bombs still causes problems in antivirus-software Dr. Peter Bieringer (Jan 10)
- RE: bzip2 bombs still causes problems in antivirus-software Steve Wray (Jan 09)
- Re: bzip2 bombs still causes problems in antivirus-software...probably zip, too Dr. Peter Bieringer (Jan 12)