| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: dunceor at gmail.com (Dunceor .) Subject: Analysis of CherryOS and PearPC code Nice work there. I think there is alot of commersial programs out there that lend alot of code from various open source programs (GPL because if they are BSD then it's allright even for commersial programs to use it). It's hard to prove because as you say, if you sit and change all strings you would pretty much get away with it. We'll see what happends with this. // Dunceor On Mon, 14 Mar 2005 05:51:50 -0500, Kristian Hermansen <khermansen@...technology.com> wrote: > I became interested in this whole debate recently and wanted to get to > the bottom of it all (in the interest of FD). I did some simple IDA Pro > analysis myself, but I am wondering what other people here think? Is > there any possible way CherryOS did NOT steal PearPC code? And how does > an open source project like PPC protect themselves from harm like this > in the future? I believe these to be important security-related issues > -- not to mention the fact that Maui's website has been getting hacked > because of all the fuss over it lately. Can anyone shed some light on > the subject from another point of view which I am not seeing? > > Here is a link to the IDA Pro analysis complete with screenshots: > http://www.ht-technology.com/cherryos-pearpc/cherryos-pearpc.html > -- > Kristian Hermansen <khermansen@...technology.com> > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://www.secunia.com/ >
Powered by blists - more mailing lists