[linux-elitists] wtf is "public domain"?
Marc MERLIN
marc@merlins.org
Tue Nov 6 13:32:22 PST 2007
On Tue, Nov 06, 2007 at 11:51:21AM -0800, Rick Moen wrote:
> There was also some 2005 kerfuffle about Dan allegedly... dodging
> concerning a problem with integer handling on 64-bit platforms -- fixed
> in netqmail. http://cr.yp.to/qmail/guarantee.html addresses that claim
> from Dan's perspective.
I love the quote
In May 2005, Georgi Guninski claimed that some potential 64-bit portability
problems allowed a ``remote exploit in qmail-smtpd.'' This claim is denied.
Nobody gives gigabytes of memory to each qmail-smtpd process, so there is no
problem with qmail's assumption that allocated array lengths fit comfortably
into 32 bits.
In other words, there was a remotely exploitable bug, but djb conveniently
states that it wouldn't happy to anyone sane, therefore it's not a bug.
Gotta love that way of thinking...
Marc
--
"A mouse is a device used to point at the xterm you want to type in" - A.S.R.
Microsoft is to operating systems & security ....
.... what McDonalds is to gourmet cooking
Home page: http://marc.merlins.org/
More information about the linux-elitists
mailing list