Re: Bitcoin and buffer overflow attacks

Quote from: da2ce7 on December 11, 2010, 05:49:22
direct to IP address transfers seems like a obvious surface area to attack.

If you ever find anyone who turned it on.  It’s disabled by default.

Quote from: witchspace on December 11, 2010, 09:59:40
There is no way to be absolutely sure that there are no buffer overflow attacks. Although it would help to implement the client in a language that doesn’t have buffer overflows because it checks array indices (Python, Java, C#, …).

It’s all STL.  There are almost no buffers.

3,630 total views, 1 views today

https://bitcointalk.org/index.php?topic=2208.msg29165#msg29165