Ethereal: Re: [Ethereal-dev] Preparing for 1.0

Ethereal-dev: March 2006

Subject: Re: [Ethereal-dev] Preparing for 1.0
From: Gerald Combs <gerald@xxxxxxxxxxxx>
Date: Mon, 06 Mar 2006 13:31:16 -0600

Michael Tuexen wrote:
> Just a question regarding the last point:
>>> Designate a set of dissectors as "known safe"?
> 
> What are the requirements for such dissectors and what are the
> consequences?

I don't know that the requirements were ever settled on.  It was
suggested a while back that dissectors be categorized for security to
benefit users and to encourage developers to write more secure code:

  http://www.ethereal.com/lists/ethereal-dev/200502/msg00195.html

There are several ways to categorize dissectors, such as formal audits,
past performance, or automated test scores.  The consequences are that
Ethereal might ship with fewer features out of the box, requiring the
user to enable those features automatically.

References:
- Re: [Ethereal-dev] Preparing for 1.0
  - From: Joerg Mayer
- Re: [Ethereal-dev] Preparing for 1.0
  - From: Michael Tuexen

Prev by Date: Re: [Ethereal-dev] Support for old Windows versions (9x, NT4) is silently crumbling away by the libraries we use ...
Next by Date: Re: [Ethereal-dev] Support for old Windows versions (9x, NT4) is silently crumbling away by the libraries we use ...
Previous by thread: Re: [Ethereal-dev] Preparing for 1.0
Next by thread: Re: [Ethereal-dev] Preparing for 1.0
Index(es):
- Date
- Thread