Full Disclosure mailing list archives

RE: Windows 2000 Source Leak Verified. Get ready for the havoc.

From: "Aditya, ALD [Aditya Lalit Deshmukh]" <aditya.deshmukh () online gateway technolabs net>
Date: Mon, 16 Feb 2004 10:08:49 +0530


off topic, just some random thoughts

maybe ms will "release" the next batch of 1/3 code in some time for "peer review" so that they can remove all the bugs 
and security holes before the next release of windows - long horn is that it ?

as per ms windows is more secure because it has closed source now... so with the source in the open windows is not 
secure any more.

are we going to see mass dumping of windows machines due to this ?

-aditya

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com]On Behalf Of
Valdis.Kletnieks () vt edu
Sent: Monday, February 16, 2004 4:28 AM
To: Lee
Cc: ald2003 () users sourceforge net; dotsecure () hushmail com;
full-disclosure () lists netsys com; bugtraq () securityfocus com
Subject: Re: [Full-disclosure] Windows 2000 Source Leak Verified. Get
ready for the havoc. 


On Sat, 14 Feb 2004 16:42:39 GMT, Lee <cheekypeople () sec33 com>  said:

again its 1/100 of standardd MS code for a OS, lets get a grip

please... and

I think I see the company who let the source get loose come out and say


Most earlier estimates of the Win2K source were about 45M lines 
of code (I think
the "40 gig" being tossed around is the size of the 
source-control-system database).
And I've seen the number 12.5M lines of code escaped.  That's 
closer to 1/3 than
to 1/100.

And remember that there's a synergistic effect - when you have 
THAT big of a chunk
of the source, you can start making a lot more educated guesses 
about what the
other 2/3 are...



________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Windows 2000 Source Leak Verified. Get ready for the havoc. dotsecure (Feb 13)
- RE: Windows 2000 Source Leak Verified. Get ready for the havoc. Aditya, ALD [Aditya Lalit Deshmukh] (Feb 14)
  - Re: Windows 2000 Source Leak Verified. Get ready for the havoc. Cael Abal (Feb 14)
  - RE: Windows 2000 Source Leak Verified. Get ready for the havoc. Byron Copeland (Feb 14)
  - Re: Windows 2000 Source Leak Verified. Get ready for the havoc. Lee (Feb 14)
    - Re: Windows 2000 Source Leak Verified. Get ready for the havoc. Valdis . Kletnieks (Feb 15)
    - Re: Windows 2000 Source Leak Verified. Get ready for the havoc. Nick FitzGerald (Feb 15)
    - RE: Windows 2000 Source Leak Verified. Get ready for the havoc. Aditya, ALD [Aditya Lalit Deshmukh] (Feb 16)
    - Re: Windows 2000 Source Leak Verified. Get ready for the havoc. Valdis . Kletnieks (Feb 16)