Pure Python Data Mangling or Encrypting
Emile van Sebille
emile at fenx.com
Wed Jun 24 12:09:29 EDT 2015
On 6/24/2015 8:55 AM, Chris Angelico wrote:
> On Thu, Jun 25, 2015 at 1:52 AM, Emile van Sebille <emile at fenx.com> wrote:
>> On 6/24/2015 7:02 AM, Grant Edwards wrote:
>>>
>>> And how does writing unmangled data to disk expose anybody to
>>> anything? I've never heard of an exploit where writing an evilly
>>> crafted bit-pattern to disk causes a any sort of problem.
>>
>>
>> Unless that code is executed at boot. Mangling would at least prevent it
>> from executing.
>
> Or it's on Windows. It's pretty easy to trick Windows into running
> some code somewhere. But you can often disrupt that by simply renaming
> the file to have no extension.
ISTR that windows may look into the file to see if it can 'guess' the
appropriate application, so dropping the extension may not be
sufficient. But maybe they've changed that as my windows experience
doesn't run much past XP.
Emile
More information about the Python-list
mailing list