[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Source Code Static Analisys

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Source Code Static Analisys
From: Ulises CuÃÃ <ulises2k@xxxxxxxxx>
Date: Sun, 28 Apr 2013 16:39:55 -0300
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 28 Apr 2013 15:40:29 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:mime-version:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=38Rk6HBZ2Y1f9by0rF0qVWGISBIH1kTOj/n047wSL4A=; b=HRYRAz2lhkjpB1V7eZ52xfQhzvDbnBS/PJFPxDBA51awiu/FQvwgggnHbm9TOKneOP nx7lJ1CiZjC2xs3ibVFxqRF+HLfWSuGTKHv6R+beXdf/8F8oTdDjcsmjo/zGIOaWQsqi HP5qT3HfxxIIgEB0vXJnd9BG9AAwfRcGVCaQMH3sZ6ZGB1tNmh14mqNXrzjqRCVxP3cc +uFBiFT2PS2fHqpoIQS8c6/tCXZEr2zh6jGoSDnH1ZYxhoLho1ay4nnAAPKGmcPoq0DT eQvJR7TNC5beN/DP3hIeo/yRNOK766aB+/NkOfolhtzdXDtGjsB0V7kZnhoslStkKXl9 JcIw==
In-reply-to: <CAKDKvuxMrrr4rge1OFLdDekT_2apsP3s16hKkjq-EKD7WBXqeQ@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CA+2=Aw_UHEx-biz5D6SiOwPa0v0r=92vMpqmtymSNNaokXZAuQ@xxxxxxxxxxxxxx> <CAKDKvuxMrrr4rge1OFLdDekT_2apsP3s16hKkjq-EKD7WBXqeQ@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

I send you a new Security Report.

Regards,

2013/4/27 Nick Mathewson <nickm@xxxxxxxxxxxx>

On Sat, Apr 27, 2013 at 7:16 PM, Ulises CuÃÃ <ulises2k@xxxxxxxxx> wrote:
> I want colaborate with Tor project.
>
> I send a document of analys source code about the lasted version

Well, looks like I'm spending my evening combing through this thing
looking for true-positives. ÂIf you find any that aren't
false-positives --- particularly security-relevant ones --- please
send me a gpg-encrypted mail or something. ÂSending them to the
mailing list like this isn't so great.

(Does the Fortify license actually let you do this? I thought most
tools like this were a little picky about what code you could run them
on, and what you could do with the results.)

best wishes,
--
Nick
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Attachment: tor-0.2.3.25_-_Fortify_Security_Report.pdf
Description: Adobe PDF document

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Source Code Static Analisys
  - From: Matthew Finkel

References:
- [tor-dev] Source Code Static Analisys
  - From: Ulises CuÃÃ
- Re: [tor-dev] Source Code Static Analisys
  - From: Nick Mathewson

Prev by Author: [tor-dev] Source Code Static Analisys
Next by Author: Re: [tor-dev] Moving our website to git and splitting it in two
Previous by thread: Re: [tor-dev] Source Code Static Analisys
Next by thread: Re: [tor-dev] Source Code Static Analisys
Index(es):
- Author
- Thread