[TAG] Things Debian Project Leaders Do
Ben Okopnik
ben at linuxgazette.net
Fri Jul 27 18:04:26 MSD 2007
On Fri, Jul 27, 2007 at 05:09:08PM +0530, Kapil Hari Paranjape wrote:
> Hello,
>
> Well one of the things at least!
> http://sam.zoy.org/zzuf/
> (Also available in Debian testing of course!)
> Quite a neat toy!
I seem to recall a couple of programs in the Debian kit that do
something like this by feeding random data to apps, but this one seems
to be a real star. E.g., http://sam.zoy.org/zzuf/lol-firefox.gif crashes
my Firefox (1.5.0.11) very nicely - one-click functionality. :)
I wonder if it'll compile under Solaris? I just might try it out next
week, while I'm in Atlanta. I haven't taught a security class in a
while, but it seems like 'zzuf' would make a _very_ nice teaching aid
for when I'm explaining vulnerability discovery. Given that Sun is
pretty much abandoning CDE, buffer overflows and such are becoming
harder to demonstrate...
--
* Ben Okopnik * Editor-in-Chief, Linux Gazette * http://LinuxGazette.NET *
More information about the TAG
mailing list