|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Dharmendra.T (dharmu_at_nsecure.net)
Date: Sat Oct 26 2002 - 02:27:36 CDT
There are some packages using which you can see whether the code is
vulnerable or not. Or give to the programmers and tell them to exaplin the
code and what it does. Best place to get this is freshmeat.net
Another way is run it on a seperate machine which is not connected to the
network and see whether it opens any port at any time(by seeing the log
files you should knowing this.)
Regards
Dharmendra.T
Linux Security Expert
www.nsecure.net
----- Original Message -----
From: "puja" <puja.puri
cdac.ernet.in>
To: <security-auditferret.lmh.ox.ac.uk>
Sent: Saturday, October 26, 2002 12:32 PM
Subject: Detecting Malicious code
> Hello list
>
> I am new to this list. Please excuse me if this is not the right place
> to ask this question.
>
> Linux Security Audit Project is for security and auditing of free
> available software.
> But I have bought a code from some third party ( i.e. it is not a freely
> available software ). I want to ensure that it doesn't contain any
> malicious code or any backdoors which might be dangerous for my system.
> How can I ensure this ?
>
> thanks in advance
>
> Regards
> Puja Puri
>
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]