Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

<james> abuse me. I'm so lame I sent a bug report to debian-devel-changes -- Seen on #Debian


computers / rocksolid.shared.linux / Re: novaBBS

SubjectAuthor
o novaBBSanon

1
Re: novaBBS

<00e46b6864ce23965879c19e3f9cb2d8@def4>

 copy mid   Newsgroups: rocksolid.shared.linux
Path: i2pn2.org!rocksolid2!def5!POSTED.localhost!not-for-mail
From: ano...@anon.com (anon)
Newsgroups: rocksolid.shared.linux
Message-ID: <00e46b6864ce23965879c19e3f9cb2d8@def4>
Subject: Re: novaBBS
Date: Fri, 08 May 2020 00:13:11+0000
Organization: def5
In-Reply-To: <r91r4q$289$1@novabbs.com>
References: <r91r4q$289$1@novabbs.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
 by: anon - Fri, 8 May 2020 00:13 UTC

>and that is only the obvious stuff...a carefully constructed buffer overflow would be much more difficult to spot, and finally could be used for the same purpose...

Very true, see the heartbleed disaster.
What helps against this ?
-_very_ careful code review and testing (including fuzzing)
-careful selection of the software used (reducing attack surface)
-quitting support and usage for decades old codecs, picture formats and the like (see the Samsung example)
-not much else, to my knowledge...

Posted on def4

1
server_pubkey.txt

rocksolid light 0.9.7
clearnet tor