crypt is defined in assembly at s3 crypt.s and it would appear to use the same f... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		avadodin 49 days ago \| parent \| context \| favorite \| on: Fixing a Buffer Overflow in Unix v4 Like It's 1973 crypt is defined in assembly at s3 crypt.s and it would appear to use the same family of "cryptographic machine" as V6's crypt.c but it is even shorter and I can't tell if it has bounds checks or not — V6 limits output size to 512. edit: if hash output length is variable it may be impossible to find a solution and then a side channel timing attack is probably the best option.

avadodin 49 days ago | [–]

someone liked this but note that someone else had already determined it is limited to 64 bytes on a previous HN post so the overflow hack does work.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact