From: dcd AT TC DOT FLUKE DOT COM (David Dyck)
Subject: Re: Security hole in gnu-win32-gcc
11 Sep 1997 14:37:25 -0700
Message-ID: <97Sep11.083107pdt.35783-1cygnus.gnu-win32@gateway.fluke.com>
References: <34179c7e DOT 111775356 AT smtp DOT netzone DOT com>
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII


Quite a while ago I read the documents that described
the test that were done for the higher level security.

It assumed that Networking must have been turned off!
It also assumed that the ability to debug programs was
  also turned off.

Obviously, the didn't plan on C2 developer security :-)

On Thu, 11 Sep 1997, Mikey wrote:

> Happens even on NT if system isn't configured for C2 security.
> 
> +10% security -20% speed
> 
> Don't you love Bill?
> 
> On Thu, 11 Sep 1997 02:28:54 +0200 (METDST), you wrote:
> 
> >Hi Daniel, you wrote:
> >
> >: I discovered a security hole in cygnus gnu-win32 gcc: Obviously,
> >: allocated ram is not initialised. The generated binaries thus contain
> >
> >W95 only. Shouldn't happen under NT, else it wouldn't be C2 certified.
> >
> >
> >Bye, Heribert (dahms AT ifk20 DOT mach DOT uni-karlsruhe DOT de)
> >-
> >For help on using this list (especially unsubscribing), send a message to
> >"gnu-win32-request AT cygnus DOT com" with one line of text: "help".
> >
> 
> (jeffdbREMOVETHIS AT netzone DOT com)
> delete REMOVETHIS from the above to reply
>          Mikey

-
For help on using this list (especially unsubscribing), send a message to
"gnu-win32-request AT cygnus DOT com" with one line of text: "help".