Dailydave mailing list archives

Today's thought

From: Dave Aitel <dave () immunitysec com>
Date: Tue, 25 May 2004 19:21:34 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Just because you've visited a code block does not mean you've
triggered a potential bug in that code block. The most basic case of
this is bugs that require global variables to be set to certain values
to trigger bugs, or pointers that need to be moved to certain places.

There's a lot of binary and source analysis technologies coming out -
people need to understand that the false-positive problem has still
not really been solved by a machine. When you don't have false
positives in binary analysis, what that means is that you have a huge
number of false negatives.

People are probably solving this with massive iterations over the code
space. I'm not sure this is the correct answer.

IMHO.

- -dave

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFAs9T+zOrqAtg8JS8RAl5TAKDbXSbnHkPsDJat7evADo3pNG09nACgnt/L
IRG8x4o6nFWZdoDVIXZP2BM=
=MEBV
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://www.immunitysec.com/mailman/listinfo/dailydave

Current thread:

Today's thought Dave Aitel (May 25)
- Re: Today's thought Halvar Flake (May 25)
- Re: Today's thought Matt Hargett (May 26)
  - Re: Today's thought Halvar Flake (May 26)
    - RE: Today's thought Chris Eagle (May 27)
    - Re: Today's thought Dave Aitel (May 27)
    - Re: Today's thought Dave Aitel (May 27)
    - Re: Today's thought Matt Hargett (May 27)
    - Re: Today's thought Halvar Flake (May 27)
    - Re: Today's thought Matt Hargett (May 29)
    - Re: Today's thought Halvar Flake (May 29)