[Info-vax] A DCL wish list of sorts...
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Fri Mar 22 12:24:29 EDT 2019
On 2019-03-22 15:04:37 +0000, pcanagnostopoulos at gmail.com said:
> It's interesting how we never worried about hackers back in those days.
> Everyone is quite on top of length and limit checking these days, I
> hope. Heck, I never once thought about the possibility of forging the
> PHONE protocol to interject text into a conversation.
I had tools to do that with PHONE. Tools with MAIL, too. Given the
way MAIL worked, there are some interesting protocol level hacks
available, too.
> Question: How does someone interject arbitrary instructions into the
> DCL table? I don't think the CDU supports hex escapes in strings.
> Perhaps that has been added.
This wasn't in DCL itself. This was a corruption that allowed data to
be written into a memory location that altered program execution flow
within CDU, and which then allowed Simon to inject instructions into
the processing.
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list