Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 2 Nov 2021 10:05:52 -0700
From: "David A. Wheeler" <>
Subject: Re: Trojan Source Attacks

> On Nov 2, 2021, at 9:23 AM, Josh Bressers <> wrote:
> You could argue the obfuscated C contest is related, that goes back to 1984.

You could certainly make that argument :-). At the least,
I think the obfuscated V contest was heavily inspired by the obfuscated C contest.
After all, just look at the similarities of the name! 

I didn’t make that argument.  The obfuscated C contest doesn’t bill itself
as trying to fool anything as thinking some code did something *different*.
Most entries are so bizarre that you have to deeply analyze it to figure out what it does at all.
It’s usually painfully obvious that obfuscated C entries are hard to read.

Underhanded code is, I think, significantly different. Instead of being clearly hard to understand,
It’s designed to be (1) easy to understand WRONGLY, (2) look innocent, and
(3) do something malevolent.

--- David A. Wheeler

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.