Re: Algorimic Complexity Attack on GLIB 2.2.1
- From: Sander Vesik <Sander Vesik Sun COM>
- To: Scott A Crosby <scrosby cs rice edu>
- Cc: gtk-devel-list gnome org
- Subject: Re: Algorimic Complexity Attack on GLIB 2.2.1
- Date: Sat, 31 May 2003 01:46:32 +0100 (BST)
On 30 May 2003, Scott A Crosby wrote:
> Correct. However, many applications will use the default function and
> leave themselves open to potential attack. I considered this an
> unintended design decision. I was informing you and users of your
> library that using the default string-hashing function could leave
> users of your hash table implementation open to a potential DoS
> attack. If it was done this way deliberately, then I apologize.
>
it may well be you are right - at any rate, I withdrew my objection. glib
is also most definately anything but my library, i haven't even ever
directly commited code to it.
>
> Scott
>
Sander
OpenOffice.org - conquering the world 14000 PC-s at a time
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
