GNU bug report logs -
#29528
Add blacknurse
Previous Next
Reported by: ng0 <ng0 <at> n0.is>
Date: Fri, 1 Dec 2017 20:10:01 UTC
Severity: normal
Done: ng0 <ng0 <at> n0.is>
Bug is archived. No further changes may be made.
Full log
View this message in rfc822 format
Hi,
Ricardo Wurmus <rekado <at> elephly.net> skribis:
>> + (home-page "https://github.com/jedisct1/blacknurse")
>> + (synopsis "Proof of Concept for the Blacknurse attack")
>> + (description
>> + "Simple Proof of Concept for the Blacknurse attack.
>> +Blacknurse is a low bandwidth ICMP attack that is capable of doing denial
>> +of service to well known firewalls.")
>
> The first fragment is not a full sentence.
>
> Looking at this package I wonder why it should be part of Guix as it is
> merely malware. I don’t see any reason why this should be installable
> through Guix. We are not in the habit of providing packages for
> exploits. Putting it in “networking” makes it seem like this would be a
> useful networking application, but it really is not. It just
> demonstrates a bug in networked devices.
>
> @Ludo: what do you think?
Indeed. I see two issues here:
1. a “proof of concept” is typically something for experts of the
field to study, rather than generally useful software;
2. it’s a tool whose purpose is to perform DoS attacks on routers, and
I find it questionable to provide it in Guix (not to mention that
there’s no shortage of such programs that we could add!).
So overall I’m reluctant to including it in Guix.
Thoughts?
Ludo’.
This bug report was last modified 7 years and 169 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.