sen-material: comparison handouts/ho03.tex

equal deleted inserted replaced

-:da4896f201b5
+:e4a2807ac7f2
 \begin{axis}[
 xlabel={year},
 ylabel={\% of total attacks},
 ylabel style={yshift=-1em},
 enlargelimits=false,
-xtick={1997,1999,2001,...,2015},
+xtick={1997,2000,2002,...,2016},
 xmin=1996.5,
-xmax=2016,
+xmax=2017,
 ymax=21,
 ytick={0,5,...,20},
 scaled ticks=false,
 axis lines=left,
 width=12cm,
 starts at address \pcode{0x0804852c} (top address in the
 left column).
 \begin{figure}[p]
 \lstinputlisting[language=C]{../progs/C2.c}
-\caption{A vulnerable login implementation. The use of the
+\caption{A vulnerable login implementation. The use of the `own'
-`own' \pcode{get\_line} function makes this program
+\code{get\_line} function makes this program vulnerable. The
-vulnerable. The developer should have used \emph{safe}
+developer should have used \emph{safe} library functions
-library functions instead.\label{C2}}
+instead.\label{C2}}
 \end{figure}
 This kind of attack was very popular with commercial programs
 that needed a key to be unlocked. Historically, hackers first
 broke the rather weak encryption of these locking mechanisms.
 pointer given at the end).
 \begin{figure}[p]
 \lstinputlisting[language=C]{../progs/C3.c}
 \caption{Overwriting a buffer with a string containing a
-payload. Lines 14 and 15 write the address of the buffer
+payload. Lines 14 and 15 write the address of the buffer into
-into \pcode{large\_string}. The payload is copied in
+\code{large\_string}. The payload is copied in Lines 17 and 18. Line
-Lines 17 and 18. Line 20 copies the (too large) string
+20 copies the (too large) string into the buffer.\label{C3}}
-into the buffer.\label{C3}}
 \end{figure}
 By the way you might naw have the question how do attackers
 find out about vulnerable systems in the first place? Well,
 the automated version uses \emph{fuzzers}, which throw

changeset 468	e4a2807ac7f2
parent 467	da4896f201b5
child 477	b2c5a721f360