CP files scanned for virusses?
-
I was checking out the "StatusAreaIcon" article and read the comments first, fortunately! The demo exe from the article appeared to be have been infected by CIH at some time (may not be the case in its current repost). Recently, a large free Dutch community network ("Het Net") got files on its servers infected and thus spread like hell. It got me to think. I usually download a demo zip from an article, open it and start the exe in it without much thought to see first hand what the article is talking about and determine the quality of the work. It's so easy to get infected with a nasty virus this way. (And yes, I do have an antivirus package installed, but NO, I don't have on-demand scanning running, because it slows down compilation considerably). I guess it's best to extract the demo application source files and compile them all over, but that's some work to do before deciding the article/code is worth using. ================================================================ Bottom line: ChrisM, do you scan the submitted files for virusses, worms etc? ================================================================ Of course, any malicious developer can create an "rm -r *.*" style program and upload it as the demo application for an article. I'd like to think there are no CPians that would even think of doing this! I know I am going to be a little more careful opening the demo applications. VictorV
-
I was checking out the "StatusAreaIcon" article and read the comments first, fortunately! The demo exe from the article appeared to be have been infected by CIH at some time (may not be the case in its current repost). Recently, a large free Dutch community network ("Het Net") got files on its servers infected and thus spread like hell. It got me to think. I usually download a demo zip from an article, open it and start the exe in it without much thought to see first hand what the article is talking about and determine the quality of the work. It's so easy to get infected with a nasty virus this way. (And yes, I do have an antivirus package installed, but NO, I don't have on-demand scanning running, because it slows down compilation considerably). I guess it's best to extract the demo application source files and compile them all over, but that's some work to do before deciding the article/code is worth using. ================================================================ Bottom line: ChrisM, do you scan the submitted files for virusses, worms etc? ================================================================ Of course, any malicious developer can create an "rm -r *.*" style program and upload it as the demo application for an article. I'd like to think there are no CPians that would even think of doing this! I know I am going to be a little more careful opening the demo applications. VictorV
Victor Vogelpoel wrote: Of course, any malicious developer can create an "rm -r *.*" style program and upload it as the demo application for an article. I'd like to think there are no CPians that would even think of doing this! I can't think of any CPians that would do something like that. Then again there are over 35,000 registered members of CP so I can't speak for all of them :~
"When a friend hurts us, we should write it down in the sand, where the winds of forgiveness get in charge of erasing it away, and when something great happens, we should engrave it in the stone of the memory of the heart, where no wind can erase it" Nish on life [methinks]
-
Victor Vogelpoel wrote: Of course, any malicious developer can create an "rm -r *.*" style program and upload it as the demo application for an article. I'd like to think there are no CPians that would even think of doing this! I can't think of any CPians that would do something like that. Then again there are over 35,000 registered members of CP so I can't speak for all of them :~
"When a friend hurts us, we should write it down in the sand, where the winds of forgiveness get in charge of erasing it away, and when something great happens, we should engrave it in the stone of the memory of the heart, where no wind can erase it" Nish on life [methinks]
Brian Delahunty wrote: I can't think of any CPians that would do something like that. I would do, just for a laugh you know, must be the Dubliner in me. Regards Ray "Je Suis Mort De Rire"
-
Brian Delahunty wrote: I can't think of any CPians that would do something like that. I would do, just for a laugh you know, must be the Dubliner in me. Regards Ray "Je Suis Mort De Rire"
There are a few silly apps I've played with in the past (neither created by me though) that could create vast confision / damage if released in the wild. The first creates a text file that contains a gigabyte of "."s. This can be zipped down to a few hundred K (zip seems to be a bit ineficient in this respect) Now email this file to someone, and watch as their company mail server falls over when it tries to virus scan the mail The second involves the sparse file option that was added in Win2K (For those who don't know, it means you can mark big areas of zeros in files as just emptyness, so they won't take up disk space). Using this technique, it's easy to create terrabyte files that only consume a single sector of disk space. Hide a few of these on someone's harddrive and watch in amusement the next time they check the size of the folder. -- Help me! I'm turning into a grapefruit!
-
Brian Delahunty wrote: I can't think of any CPians that would do something like that. I would do, just for a laugh you know, must be the Dubliner in me. Regards Ray "Je Suis Mort De Rire"
I should have known that!!! tch!!!
"When a friend hurts us, we should write it down in the sand, where the winds of forgiveness get in charge of erasing it away, and when something great happens, we should engrave it in the stone of the memory of the heart, where no wind can erase it" Nish on life [methinks]
-
I was checking out the "StatusAreaIcon" article and read the comments first, fortunately! The demo exe from the article appeared to be have been infected by CIH at some time (may not be the case in its current repost). Recently, a large free Dutch community network ("Het Net") got files on its servers infected and thus spread like hell. It got me to think. I usually download a demo zip from an article, open it and start the exe in it without much thought to see first hand what the article is talking about and determine the quality of the work. It's so easy to get infected with a nasty virus this way. (And yes, I do have an antivirus package installed, but NO, I don't have on-demand scanning running, because it slows down compilation considerably). I guess it's best to extract the demo application source files and compile them all over, but that's some work to do before deciding the article/code is worth using. ================================================================ Bottom line: ChrisM, do you scan the submitted files for virusses, worms etc? ================================================================ Of course, any malicious developer can create an "rm -r *.*" style program and upload it as the demo application for an article. I'd like to think there are no CPians that would even think of doing this! I know I am going to be a little more careful opening the demo applications. VictorV
There is also this danger of someone unknowingly uploading malicious code or an executable with viruses! Nish :eek:
Regards, Nish Native CPian. Born and brought up on CP. With the CP blood in him.
-
There is also this danger of someone unknowingly uploading malicious code or an executable with viruses! Nish :eek:
Regards, Nish Native CPian. Born and brought up on CP. With the CP blood in him.
Well it's the uploaders responsibility to be able to assert that their upload is safe and it's not going to cause your computer to mulfunction or you fiancee to not want to sleep with you because she claims that you love the computer more than you love her, when in truth that mole on her butt really bugs you...err what was I saying?....oh yeah...programmer / uploader should secure their content before they upload it to CP or a similar service. I've seen too many cases where people have uploaded stuff and not told anyone what was really in just because they thought it was "cute" or "cool". I'll admit I've pulled pranks, and harmless ones at that, but I would never upload something that would knowly cause damage to another person's system. That's just wrong... Can you imagine Darth Maul on speed? "Dude...and I trippin or is my desktop changing color all by itself?" -- Steve Gard
-
DARN, This forces me to build all the demo applications by hand instead of running the available executable ;) Fortunately you don't have any articles on CodeProject! :rolleyes: I'll be watching you! VictorV
Victor Vogelpoel wrote: Fortunately you don't have any articles on CodeProject! Not yet anyway... :-D -- Help me! I'm turning into a grapefruit!
-
There are a few silly apps I've played with in the past (neither created by me though) that could create vast confision / damage if released in the wild. The first creates a text file that contains a gigabyte of "."s. This can be zipped down to a few hundred K (zip seems to be a bit ineficient in this respect) Now email this file to someone, and watch as their company mail server falls over when it tries to virus scan the mail The second involves the sparse file option that was added in Win2K (For those who don't know, it means you can mark big areas of zeros in files as just emptyness, so they won't take up disk space). Using this technique, it's easy to create terrabyte files that only consume a single sector of disk space. Hide a few of these on someone's harddrive and watch in amusement the next time they check the size of the folder. -- Help me! I'm turning into a grapefruit!
DARN, This forces me to build all the demo applications by hand instead of running the available executable ;) Fortunately you don't have any articles on CodeProject! :rolleyes: I'll be watching you! VictorV
-
I was checking out the "StatusAreaIcon" article and read the comments first, fortunately! The demo exe from the article appeared to be have been infected by CIH at some time (may not be the case in its current repost). Recently, a large free Dutch community network ("Het Net") got files on its servers infected and thus spread like hell. It got me to think. I usually download a demo zip from an article, open it and start the exe in it without much thought to see first hand what the article is talking about and determine the quality of the work. It's so easy to get infected with a nasty virus this way. (And yes, I do have an antivirus package installed, but NO, I don't have on-demand scanning running, because it slows down compilation considerably). I guess it's best to extract the demo application source files and compile them all over, but that's some work to do before deciding the article/code is worth using. ================================================================ Bottom line: ChrisM, do you scan the submitted files for virusses, worms etc? ================================================================ Of course, any malicious developer can create an "rm -r *.*" style program and upload it as the demo application for an article. I'd like to think there are no CPians that would even think of doing this! I know I am going to be a little more careful opening the demo applications. VictorV
Victor Vogelpoel wrote: ChrisM, do you scan the submitted files for virusses, worms etc? I don't check demo files for viruses when I edit the articles (don't have a virus scanner on my PC and have not had one virus for many, many months, the server does its job well) but I do check the code people put into their articles and source code files for anything suspicious. If I saw something obviously wrong I would consult Chris. Saying that though I think it is also the responsibility of the person downloading the demo to check it with a virus scanner. We, the editors, could never guarantee 100% that all articles are virus free, so everyone needs to do their part. Bottom line: Check the files before running them, we do our best but things may slip through. regards, Paul Watson Bluegrass Cape Town, South Africa The greatest thing you'll ever learn is just to love, and to be loved in return - Moulin Rouge Tim Smith wrote: Over here in the third world of humor (a.k.a. BBC America), peterchen wrote: We should petition microsoft to a "target=_Paul" attribute.
-
Well it's the uploaders responsibility to be able to assert that their upload is safe and it's not going to cause your computer to mulfunction or you fiancee to not want to sleep with you because she claims that you love the computer more than you love her, when in truth that mole on her butt really bugs you...err what was I saying?....oh yeah...programmer / uploader should secure their content before they upload it to CP or a similar service. I've seen too many cases where people have uploaded stuff and not told anyone what was really in just because they thought it was "cute" or "cool". I'll admit I've pulled pranks, and harmless ones at that, but I would never upload something that would knowly cause damage to another person's system. That's just wrong... Can you imagine Darth Maul on speed? "Dude...and I trippin or is my desktop changing color all by itself?" -- Steve Gard
John Aldrich wrote: or you fiancee to not want to sleep with you because she claims that you love the computer more than you love her, when in truth that mole on her butt really bugs you Dude, you have issues, get thee to a head-doctor, or just talk to her. regards, Paul Watson Bluegrass Cape Town, South Africa The greatest thing you'll ever learn is just to love, and to be loved in return - Moulin Rouge Tim Smith wrote: Over here in the third world of humor (a.k.a. BBC America), peterchen wrote: We should petition microsoft to a "target=_Paul" attribute.
-
I was checking out the "StatusAreaIcon" article and read the comments first, fortunately! The demo exe from the article appeared to be have been infected by CIH at some time (may not be the case in its current repost). Recently, a large free Dutch community network ("Het Net") got files on its servers infected and thus spread like hell. It got me to think. I usually download a demo zip from an article, open it and start the exe in it without much thought to see first hand what the article is talking about and determine the quality of the work. It's so easy to get infected with a nasty virus this way. (And yes, I do have an antivirus package installed, but NO, I don't have on-demand scanning running, because it slows down compilation considerably). I guess it's best to extract the demo application source files and compile them all over, but that's some work to do before deciding the article/code is worth using. ================================================================ Bottom line: ChrisM, do you scan the submitted files for virusses, worms etc? ================================================================ Of course, any malicious developer can create an "rm -r *.*" style program and upload it as the demo application for an article. I'd like to think there are no CPians that would even think of doing this! I know I am going to be a little more careful opening the demo applications. VictorV
I had this thought long time back...even I think I verified it with chris. I guess CP scans for viruses for uploaded files ... :~ Kannan
-
Victor Vogelpoel wrote: ChrisM, do you scan the submitted files for virusses, worms etc? I don't check demo files for viruses when I edit the articles (don't have a virus scanner on my PC and have not had one virus for many, many months, the server does its job well) but I do check the code people put into their articles and source code files for anything suspicious. If I saw something obviously wrong I would consult Chris. Saying that though I think it is also the responsibility of the person downloading the demo to check it with a virus scanner. We, the editors, could never guarantee 100% that all articles are virus free, so everyone needs to do their part. Bottom line: Check the files before running them, we do our best but things may slip through. regards, Paul Watson Bluegrass Cape Town, South Africa The greatest thing you'll ever learn is just to love, and to be loved in return - Moulin Rouge Tim Smith wrote: Over here in the third world of humor (a.k.a. BBC America), peterchen wrote: We should petition microsoft to a "target=_Paul" attribute.
Well, how about running an antivirus package on the webfarm servers of CodeProject? At least the known bad stuff can be filtered out then. CIH is very nasty! Keep an eye on CPian "benjymous": he's likely to write something of his own that won't be caught by a scanner! VictorV
-
Victor Vogelpoel wrote: Fortunately you don't have any articles on CodeProject! Not yet anyway... :-D -- Help me! I'm turning into a grapefruit!
Fill me in! What'll be the subject of your article? "Fun stuff with sparse files and streams"?
-
I had this thought long time back...even I think I verified it with chris. I guess CP scans for viruses for uploaded files ... :~ Kannan
Waiting for him to wake up in down under...
-
I was checking out the "StatusAreaIcon" article and read the comments first, fortunately! The demo exe from the article appeared to be have been infected by CIH at some time (may not be the case in its current repost). Recently, a large free Dutch community network ("Het Net") got files on its servers infected and thus spread like hell. It got me to think. I usually download a demo zip from an article, open it and start the exe in it without much thought to see first hand what the article is talking about and determine the quality of the work. It's so easy to get infected with a nasty virus this way. (And yes, I do have an antivirus package installed, but NO, I don't have on-demand scanning running, because it slows down compilation considerably). I guess it's best to extract the demo application source files and compile them all over, but that's some work to do before deciding the article/code is worth using. ================================================================ Bottom line: ChrisM, do you scan the submitted files for virusses, worms etc? ================================================================ Of course, any malicious developer can create an "rm -r *.*" style program and upload it as the demo application for an article. I'd like to think there are no CPians that would even think of doing this! I know I am going to be a little more careful opening the demo applications. VictorV
Especially with the submission wizard, and some of the dodgy and pointless articles that have been submitted in the past. Although those were just blank "zzzzzzzzzzz" articles - any article that doesn't look that good or have a screenshot, I rarely bother with, so it's doubtfull if people would write a good article just to get a virus put on your pc. Cheers, Peter Pearson
-
Fill me in! What'll be the subject of your article? "Fun stuff with sparse files and streams"?
Good idea, but I was more thinking along the lines of documenting the development process of the little DirectX game I'm working on X| once I get my head around the matrices, that is X| I doubt I'll find a use for terabyte sparse files in my game, but it would be a nifty anti-piracy measure :-D -- Help me! I'm turning into a grapefruit!
-
There are a few silly apps I've played with in the past (neither created by me though) that could create vast confision / damage if released in the wild. The first creates a text file that contains a gigabyte of "."s. This can be zipped down to a few hundred K (zip seems to be a bit ineficient in this respect) Now email this file to someone, and watch as their company mail server falls over when it tries to virus scan the mail The second involves the sparse file option that was added in Win2K (For those who don't know, it means you can mark big areas of zeros in files as just emptyness, so they won't take up disk space). Using this technique, it's easy to create terrabyte files that only consume a single sector of disk space. Hide a few of these on someone's harddrive and watch in amusement the next time they check the size of the folder. -- Help me! I'm turning into a grapefruit!
Never even heard of that :-)
"When a friend hurts us, we should write it down in the sand, where the winds of forgiveness get in charge of erasing it away, and when something great happens, we should engrave it in the stone of the memory of the heart, where no wind can erase it" Nish on life [methinks]
-
Especially with the submission wizard, and some of the dodgy and pointless articles that have been submitted in the past. Although those were just blank "zzzzzzzzzzz" articles - any article that doesn't look that good or have a screenshot, I rarely bother with, so it's doubtfull if people would write a good article just to get a virus put on your pc. Cheers, Peter Pearson
OK, I hate to sound ignorant, but what is all this "CPian" stuff?
-
Good idea, but I was more thinking along the lines of documenting the development process of the little DirectX game I'm working on X| once I get my head around the matrices, that is X| I doubt I'll find a use for terabyte sparse files in my game, but it would be a nifty anti-piracy measure :-D -- Help me! I'm turning into a grapefruit!
Jan larsen , handed to me this 2 cool sites about 3D , perhaps this could help you out ? http://chortle.ccsu.ctstateu.edu/vectorLessons/vectorIndex.html and http://members.tripod.com/gamecode/tut/ Cheers, Joao Vaz A person who is nice to you, but rude to the waiter, is not a nice person - Natalie Portman (Padme/Amidala of Star Wars)