Date: Mon, 31 Jul 2000 04:09:59 -0700 (PDT) From: Kris Kennaway <kris@FreeBSD.org> To: audit@freebsd.org Subject: Re: Fuzz testing Message-ID: <Pine.BSF.4.21.0007310408460.633-100000@freefall.freebsd.org> In-Reply-To: <Pine.BSF.4.21.0007310404180.633-100000@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 31 Jul 2000, Kris Kennaway wrote: > Well, if anyone is looking for something to do, this came up on bugtraq: > > ftp://grilled.cs.wisc.edu/fuzz/ > > basically it's a set of tools which stuff random input into command-line > utils to look for bugs. There are probably a few easy targets here (well, > I know there are)..if you find one, check with OpenBSD to see if they've > already fixed it to save yourself some work. For example: a2p.core as.core csh.core flex++.core flex.core sh.core :-) Other bugs this can expose are data dependent infinite loops. Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe <forsythe@alum.mit.edu> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0007310408460.633-100000>