Firewall Wizards mailing list archives

Re: signing applets a solution? Never!

From: Pauline van Winsen - Uniq Professional Services <Pauline.van.Winsen () uniq com au>
Date: Fri, 12 Dec 1997 11:41:46 +1100 (EST)


When talking about security of binary products, I believe it is hard to
believe that programmers do not sometimes program backdoors into their
programs. It probably depends on the software company, but in many places
it should be fairly easy to put something into the code without company or
fellow programmers finding out about it.


& for a classic example check out:

http://www.cs.umsl.edu/~sanjiv/sys_sec/security/thompson/hack.html

one of my all time favourite security papers.

cheers,
pauline

Pauline van Winsen                                   pauline () uniq com au
Uniq Professional Services Pty Ltd                       www.uniq.com.au
PO Box 70, Paddington, NSW 2021,                      (Sydney) Australia
Phone: +61-2-9380-6360      Fax: +61-2-9380-6416      Pager: 016 287 000
"You'll need a dress for dancing. Unless you're going steady with 
someone in the Diplomatic Corps, you won't really need a full-length 
ball gown."
   Fashion Sense - The Single Woman - Book 2, Woman's World, circa 1964.

Current thread:

signing applets a solution? Never! Hal (Dec 03)
- Re: signing applets a solution? Never! Marcus J. Ranum (Dec 08)
  - Re: signing applets a solution? Never! David C Niemi (Dec 08)
  - Re: signing applets a solution? Never! Darren Reed (Dec 08)
    - Re: signing applets a solution? Never! chuck yerkes (Dec 09)
    - Re: signing applets a solution? Never! Jyri Kaljundi (Dec 11)
- <Possible follow-ups>
- Re: signing applets a solution? Never! Pauline van Winsen - Uniq Professional Services (Dec 11)
- RE: signing applets a solution? Never! Hal (Dec 12)
  - Re: signing applets a solution? Never! Bennett Todd (Dec 17)