Anssi Saari wrote:
> Steven D'Aprano writes:
>
>> Here's the one-liner:
>>
>> python -c 'import socket;y="0"*5000;socket.gethostbyname(y)'
>>
>>
>> I think it is likely that y="0"*5000 would segfault due to lack of
>> memory on many machines. I wouldn't trust this as a test.
>
> Hmm, ho
On Wed, Feb 4, 2015 at 6:38 AM, Anssi Saari wrote:
> Anyways, here's an example calling gethostbyname directly in python:
>
> from ctypes import CDLL
> o = CDLL('libc.so.6')
> for i in range(0, 2500):
> o.gethostbyname('0'*i)
>
> I don't have a vulnerable system to test on any more though.
Th
Steven D'Aprano writes:
> Here's the one-liner:
>
> python -c 'import socket;y="0"*5000;socket.gethostbyname(y)'
>
>
> I think it is likely that y="0"*5000 would segfault due to lack of
> memory on many machines. I wouldn't trust this as a test.
Hmm, how much RAM does that one-liner actu
On Tue, Feb 3, 2015 at 4:53 AM, Rustom Mody wrote:
> How many people (actually machines) out here are vulnerable?
>
>
> http://security.stackexchange.com/questions/80210/ghost-bug-is-there-a-simple-way-to-test-if-my-system-is-secure
>
> shows a python 1-liner to check
> --
> https://mail.python.o
On 02/03/2015 04:19 AM, Steven D'Aprano wrote:
> Anssi Saari wrote:
>
>> Rustom Mody writes:
>>
>>> How many people (actually machines) out here are vulnerable?
>>>
>>>
> http://security.stackexchange.com/questions/80210/ghost-bug-is-there-a-simple-way-to-test-if-my-system-is-secure
>>>
>>> shows
Anssi Saari wrote:
> Rustom Mody writes:
>
>> How many people (actually machines) out here are vulnerable?
>>
>>
http://security.stackexchange.com/questions/80210/ghost-bug-is-there-a-simple-way-to-test-if-my-system-is-secure
>>
>> shows a python 1-liner to check
>
> Does that check actually wo
Rustom Mody writes:
> How many people (actually machines) out here are vulnerable?
>
> http://security.stackexchange.com/questions/80210/ghost-bug-is-there-a-simple-way-to-test-if-my-system-is-secure
>
> shows a python 1-liner to check
Does that check actually work for anyone? That code didn't s
On Tue, Feb 3, 2015 at 2:53 PM, Rustom Mody wrote:
> How many people (actually machines) out here are vulnerable?
>
> http://security.stackexchange.com/questions/80210/ghost-bug-is-there-a-simple-way-to-test-if-my-system-is-secure
>
> shows a python 1-liner to check
Well, I have one internal disk
How many people (actually machines) out here are vulnerable?
http://security.stackexchange.com/questions/80210/ghost-bug-is-there-a-simple-way-to-test-if-my-system-is-secure
shows a python 1-liner to check
--
https://mail.python.org/mailman/listinfo/python-list
