Re: Editors
From: The Half A Wannabee ("The)
Date: 03/07/04
- Next message: Betov: "Re: Editors"
- Previous message: The Half A Wannabee: "Re: Editors"
- In reply to: The Half A Wannabee: "Re: Editors"
- Next in thread: R.Wieser: "Re: Editors"
- Reply: R.Wieser: "Re: Editors"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Sun, 7 Mar 2004 15:55:22 +0100
"The Half A Wannabee" <ShakainZulu_AT(Pink floyd - Obscured by clouds).com>
wrote in message news:404b36b9$1@news.broadpark.no...
>
> "R.Wieser" <rwieser-killthis-@xs4all.nl> wrote in message
> news:404b2cbb$0$564$e4fe514c@news.xs4all.nl...
> > The Half A Wannabee <ShakainZulu_AT(Pink floyd - Obscured by
clouds).com>
> > schreef in berichtnieuws 404b1117$1@news.broadpark.no...
> >
> > Hello "The Half A Wannabee"
> >
> > > "R.Wieser" <rwieser-killthis-@xs4all.nl> wrote in message
> > > news:404b0621$0$564$e4fe514c@news.xs4all.nl...
> > > > Roy Jones <mhca12@sbcglobal.net> schreef in berichtnieuws
> > > > opr4gqxlnqjw3stx@news.la.sbcglobal.net...
> > > > > On 06 Mar 2004 22:36:35 GMT, Betov <betov@free.fr> wrote:
> > >
> >
> > And there are your problems :
> > 1) There is a good reason why programs are made so they can be
relocated.
> > Just two programs that someone wants to have loaded, which (partially)
> > overlap, and *poof !*.
>
> Hmm. I thought the relocation was transparent to the program. Since the
> adress space in any case is virtual, the relocation should be transparent
?
> In my delphi apps I sometimes save event pointers (8 bytes) to files, and
> there has been no problems with that so far. But.. is what you are saying
> that it is a risky *poff* buisness to record virtual adresses ?
>
> > 2) You still have to store the (not-to-be-relocated) program into a
file,
> > and that file *can* be comprimized. Either by an overwriting virus, or
by
> a
> > virus that relocates itself, and will than load the part that it had
> > overwritten from the file to the correct spot.
>
> Are you saying the virus would do its thing, repair the exe and continue?
Of course a sort of worm could host in the exe and crawl. Thats what you're
saying ? But it cant spread in this exe? It must repair it. Each time the
exe runs it must be repaired first? I do not understand. Since the data
segment addresses are relative to the code size, it would be simply
impossible for the virus to remain in the exe while the exe is running. And
the exe could check itself. Also, each exe is diffrent so the virus must
know all of them. Remember that with this sheme, I can determine, at compile
time (with some care) where my data will be placed, and insert constant
pointers to the data for controll in the exe. Each exe with diffrent
controls pointers would make the virus work a real hell? The virus will
spread MUCH slower if such a sheme could be made to work ?
> >
> > Regards,
> > Rudy Wieser
> >
>
>
>
>
- Next message: Betov: "Re: Editors"
- Previous message: The Half A Wannabee: "Re: Editors"
- In reply to: The Half A Wannabee: "Re: Editors"
- Next in thread: R.Wieser: "Re: Editors"
- Reply: R.Wieser: "Re: Editors"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
