The 'Security Digest' Archives (TM)

Archive: About | Browse | Search | Contributions | Feedback
Site: Help | Index | Search | Contact | Notices | Changes

ARCHIVE: 'Phage List' - Archives (1988 - 1989)
DOCUMENT: phage #079 [Re: Disassembled virus?] (1 message, 806 bytes)
SOURCE: http://securitydigest.org/exec/display?f=phage/archive/079.txt&t=text/plain
NOTICE: securitydigest.org recognises the rights of all third-party works.

START OF DOCUMENT

From: Jon Rochlis <jon@ATHENA.MIT.EDU>
To: phage
Date: Sun 15:13:17 06/11/1988 EST
Subject: Re: Disassembled virus?
References: [Thread Prev: 053] [Thread Next: 094] [Message Prev: 078] [Message Next: 080]


   I think it entirely
   possible that someone will pull a copy off the net, and try to
   improve it, or "test it, just for fun". 

When we discussed this at MIT yesterday that was the key point.  Jeff
Schiller made the point (which I think is valid) that providing C code
that somebody can cut, paste, compile, insert "rm -f /" in, and run is
dangerous.  The energy barrier between modifying and running a posted
program and writing it yourself is significant.  Its just far too
simple for anybody to run if you ship the source to the world.

The ideas aren't the important thing (they're already out and not very
suprising or clever, modulo the fingerd bug) and we (at least) intend
to go into a fair amount of detail decscribing them.  A lot of people
can duplicate this virus (and do a better job at it than Morris did!).
Not shipping source code simply narrows that down a bit.  Whether
or not that is significant is up for debate.

		-- Jon

END OF DOCUMENT