[Full-disclosure] Distributed Fuzzing?
Nick FitzGerald
nick at virus-l.demon.co.uk
Wed Aug 2 07:00:53 BST 2006
CrYpTiC MauleR wrote:
> After seeing HDM's browser fuzzing I was wondering would it be practical
> to do this on a large scale like using http://boinc.berkeley.edu/ to fuzz
> applications and find more bugs. Just an idea O.O
"practical" as in "feasibly doable"? I'm sure.
"practical" as in "likely to be very successful"? I doubt it.
The point of what you're testing is to upset/break/destabilize/crash
the process under test -- I can't see the side-effects of that making
it a very "popular" project amonsgt typical BOINC, etc users.
That's not to say that a collaborative effort combining the test
machines of those willing to participate in that manner would not be
practical, but I can't see it being terribly successful as a BOINC
project (or BOINC being very keen on it!).
Regards,
Nick FitzGerald
Full-Disclosure is hosted and sponsored by Secunia.