Re: Algorimic Complexity Attack on GLIB 2.2.1



On 30 May 2003, Scott A Crosby wrote:

> Correct. However, many applications will use the default function and
> leave themselves open to potential attack. I considered this an
> unintended design decision. I was informing you and users of your
> library that using the default string-hashing function could leave
> users of your hash table implementation open to a potential DoS
> attack. If it was done this way deliberately, then I apologize.
> 

it may well be you are right - at any rate, I withdrew my objection. glib
is also most definately anything but my library, i haven't even ever
directly commited code to it.

> 
> Scott
> 

	Sander

OpenOffice.org - conquering the world 14000 PC-s at a time




[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]