Tiny Core Extensions > TCE Talk
Testing extensions for malware.
Frank:
Before the upload, do you (the team) test user-contributed extensions for malware inside the compiled binary? If so, how?
bmarkus:
--- Quote from: Frank on January 21, 2010, 07:12:12 AM ---Before the upload, do you (the team) test user-contributed extensions for malware inside the compiled binary? If so, how?
--- End quote ---
Independently of TC practice, do you seriously expect to get an answer? Knowing the test procedure it would help to create malware to bypass such a test.
Frank:
Yes, I do expect a serious answer. "Trust us, we know what we are doing" would be a little poor ...
bmarkus:
--- Quote from: Frank on January 21, 2010, 07:33:41 AM ---Yes, I do expect a serious answer. "Trust us, we know what we are doing" would be a little poor ...
--- End quote ---
You have never developed an NSA approved stuff :)
Frank:
To clarify.
We all know that one shall not run software from random strangers on the Internet. User-compiled TC extensions are exactly that -- software from random strangers on the Internet. I would like to know whether the team has proper measures in place to detect malware in the binaries. And I would like to know what kind of measures these are, because people sometimes have ... astonishing ideas about security. You don't find out unless you ask.
This is not about "loyalty" or "trust," this is a technical question.
Navigation
[0] Message Index
[#] Next page
Go to full version