[conspire] (forw) Re: (forw) Re: [OCLUG] Pulling text out of a data file

Rick Moen rick at linuxmafia.com
Sun Jan 22 13:53:14 PST 2017


https://lcamtuf.blogspot.com/2014/10/psa-dont-run-strings-on-untrusted-files.html

----- Forwarded message from Paul Zander <paulz at ieee.org> -----

Date: Sun, 22 Jan 2017 21:27:49 +0000 (UTC)
From: Paul Zander <paulz at ieee.org>
To: Rick Moen <rick at linuxmafia.com>
Subject: Re: [conspire] (forw) Re: [OCLUG] Pulling text out of a data file
Reply-To: Paul Zander <paulz at ieee.org>

I tried to follow the URL
https://lcamtuf.blogspot.com/2014/10/psa-dont-run-strings-on-untrusted-files.htmSorry, the page you were looking for in this blog does not exist.

      From: Rick Moen <rick at linuxmafia.com>
 To: conspire at linuxmafia.com 
 Sent: Sunday, January 22, 2017 2:32 AM
 Subject: [conspire] (forw) Re: [OCLUG] Pulling text out of a data file
   
----- Forwarded message from Rick Moen <rick at linuxmafia.com> -----

Date: Sun, 22 Jan 2017 01:10:11 -0800
From: Rick Moen <rick at linuxmafia.com>
To: oclug at mailman.oclug.org
Subject: Re: [OCLUG] Pulling text out of a data file

Quoting thomas moore (thomasmoore17 at gmail.com):

> Hi all,
> 
> Suppose I have a data file or some such. If you try to less this file you
> get a bunch of garbage. However sometimes contained in the file are
> short sequences of text. If you want to read these little scraps all
> you have to do is scroll down through the file - - - provided the file
> is short, say a few kBs.

Unless you are sure where the binary file came from (and can rule out it
being crafted to attack unwary Linux admins), you should take care to
include the '-a' switch when you use GNU strings(1) for this purpose,
because of this surprising security pitfall, the libbfd library::
https://lcamtuf.blogspot.com/2014/10/psa-dont-run-strings-on-untrusted-files.htm

In fact, an argument can be made for

1. aliasing 'strings' to 'strings -a' in your login's ~/.bashrc, and
2. trying to avoid running strings(1) with root privilege.

-- 
Cheers,            "It's funny that pirates were always going around searching
Rick Moen          for treasure, and they never realized that the real 
rick at linuxmafia.com treasure was the fond memories they were creating."
McQ! (4x80)                                  -- Deep Thoughts by Jack Handey
_______________________________________________
OCLUG mailing list -- OCLUG at mailman.oclug.org
http://mailman.oclug.org/mailman/listinfo/oclug

----- End forwarded message -----

_______________________________________________
conspire mailing list
conspire at linuxmafia.com
http://linuxmafia.com/mailman/listinfo/conspire


   

----- End forwarded message -----




More information about the conspire mailing list