[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Source Code Static Analisys

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Source Code Static Analisys
From: Nick Mathewson <nickm@xxxxxxxxxxxx>
Date: Sat, 27 Apr 2013 20:52:18 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 27 Apr 2013 20:52:33 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type :content-transfer-encoding; bh=YU9/OG9m+91wojVr3vrzrdk4mk3LwgIxdj2TIaJl+/s=; b=YSncOCNCglhpEl38y1ID34gCKjI7BFI122pluBcDmTwHx3lKXvomklTNAACrl94CEn xxkVkNa7wGqmfhuKfT166nQSN4kLEPEHEh2YoZltyEA3FbiugrMBwe1KB23oMA47zc2b WCm8ia9jRA+77R8icxx7jE8Fs5loYwtPfMN4OTRgqopdRLktITcSabdrvNbvNJnERvwE O7zvZltDwgA2deywiIPWy4uSc0rbOIJme/C4mWqYuV43ifd4ZIbspMRh8NtOCilXHhSb 6tV2r4JKo1BdwL8IDNrDlWUEMNz9UjLL3b6aNXqX1SROcKbCZOsrMwS0Y6CvdYS2rZFj VXUA==
In-reply-to: <CA+2=Aw_UHEx-biz5D6SiOwPa0v0r=92vMpqmtymSNNaokXZAuQ@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CA+2=Aw_UHEx-biz5D6SiOwPa0v0r=92vMpqmtymSNNaokXZAuQ@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

On Sat, Apr 27, 2013 at 7:16 PM, Ulises Cuñé <ulises2k@xxxxxxxxx> wrote:
> I want colaborate with Tor project.
>
> I send a document of analys source code about the lasted version

Well, looks like I'm spending my evening combing through this thing
looking for true-positives.  If you find any that aren't
false-positives --- particularly security-relevant ones --- please
send me a gpg-encrypted mail or something.  Sending them to the
mailing list like this isn't so great.

(Does the Fortify license actually let you do this? I thought most
tools like this were a little picky about what code you could run them
on, and what you could do with the results.)

best wishes,
-- 
Nick
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Source Code Static Analisys
  - From: Ulises CuÃÃ

References:
- [tor-dev] Source Code Static Analisys
  - From: Ulises CuÃÃ

Prev by Author: Re: [tor-dev] Behavior of pluggable transport proxies on SIGINT
Next by Author: Re: [tor-dev] Fwd: HTTPS Server Impersonation project
Previous by thread: [tor-dev] Source Code Static Analisys
Next by thread: Re: [tor-dev] Source Code Static Analisys
Index(es):
- Author
- Thread