Talk:Zip bomb: Difference between revisions
merge proposal |
Tag: |
||
| (22 intermediate revisions by 17 users not shown) | |||
| Line 1: | Line 1: | ||
{{WikiProject banner shell|class=Start| |
|||
{{WikiProject Computing|importance=}} |
|||
{{WikiProject Computer Security|importance=low}} |
|||
}} |
|||
==Merge with [[Zip of death]]== |
==Merge with [[Zip of death]]== |
||
These two articles seem to be describing the same thing. This article is older, and the [[Talk:Zip of death|talk page]] of the other article suggests that the "zip bomb" usage is older. It would therefore probably make sense for the articles to be unified under the [[Zip bomb]] name. —[[User:PHenry|phh]] (<sup>[[User talk:PHenry|t]]</sup>/<sub>[[Special:Contributions/PHenry|c]]</sub>) 00:00, 2 August 2007 (UTC) |
These two articles seem to be describing the same thing. This article is older, and the [[Talk:Zip of death|talk page]] of the other article suggests that the "zip bomb" usage is older. It would therefore probably make sense for the articles to be unified under the [[Zip bomb]] name. —[[User:PHenry|phh]] (<sup>[[User talk:PHenry|t]]</sup>/<sub>[[Special:Contributions/PHenry|c]]</sub>) 00:00, 2 August 2007 (UTC) |
||
:Don't think there will be any objections to that, it does make sense to merge them to zip bomb and create a redirect at Zip of death page. --[[User:Gimlei|Gi<span style="color:green;">m</span>lei]] <small><sup>[[User talk:Gimlei|''(talk to me)'']]</sup></small> 10:33, 29 August 2007 (UTC) |
|||
:I decided to be [[WP:BOLD|bold]], and performed the merge. Yay. --[[User:Gimlei|Gi<span style="color:green;">m</span>lei]] <small><sup>[[User talk:Gimlei|''(talk to me)'']]</sup></small> 10:52, 29 August 2007 (UTC) |
|||
==42.zip== |
|||
The current text relating to 42.zip is inaccurate. 42.zip describes *several thousand copies of* a 4 gigabyte file, by way of nested zip files, each of which contains a copy of said 4 gig file. Were 42.zip fully decompressed, it would consume over 4 petabytes of disk space. <small>—Preceding [[Wikipedia:Signatures|unsigned]] comment added by [[Special:Contributions/64.81.57.203|64.81.57.203]] ([[User talk:64.81.57.203|talk]]) 00:24, 3 November 2007 (UTC)</small><!-- Template:UnsignedIP --> <!--Autosigned by SineBot--> |
|||
== DOS?? == |
|||
I Disagree with the articles fist line that a zip of death is a DOS attack. The current Wiki for DOS also does not seem to reference anything like the Zip of death. |
|||
Zip of Death does one of two operations. It either cripples the antiviral software, similar to most worms. Or Destroys the entire system. If the system no longer turns on, or The antiviral software stop doing its job, these could be seen as a DOS, but under that Brod of a definition, every attack conceivably be as a DOS attack, rendering DOS attack meaningless term. |
|||
To put it another way, the 911 attacks are not DOS attack to the use of the elevators of the twin towers, it was just utter devastation. |
|||
DOS attack is meant to Deny, not Destroy (system corruption), or to Allow (New vunlabilties do to lack of antiviral) [[User:Larek|Larek]] ([[User talk:Larek|talk]]) 14:40, 6 June 2008 (UTC) |
|||
: I agree with you and changed the text. [[User:Leotohill|Leotohill]] ([[User talk:Leotohill|talk]]) 01:24, 27 December 2008 (UTC) |
|||
The Oracle Java security team list a zip bomb as a DOS attack. Filling the disk space of a computer does not destroy it it makes it hard to boot or run until and admin comes along and cleans it up. |
|||
www.oracle.com/webfolder/technetwork/tutorials/obe/java/SecureJavaCodingGuidelines/player.html <small><span class="autosigned">— Preceding [[Wikipedia:Signatures|unsigned]] comment added by [[User:Biofuel|Biofuel]] ([[User talk:Biofuel|talk]] • [[Special:Contributions/Biofuel|contribs]]) 04:46, 21 June 2013 (UTC)</span></small><!-- Template:Unsigned --> <!--Autosigned by SineBot--> |
|||
== Carefully crafted == |
|||
An explanation about the "carefully crafted" description would be interesting. What kind of files are compressed, why the use of multiple levels, etc. --[[User:LKRaider|LKRaider]] ([[User talk:LKRaider|talk]]) 23:41, 21 July 2009 (UTC) |
|||
== revert replace of 42.zip with 45.1.zip == |
|||
I think someone should revert that the text about the historcally meaningfull 42.zip was changed to a text about 45.1.zip. It is always possible, to increase the resulting size, but those files are nearly the same as 42.zip, but have less beckground. (Sorry for my broken english.) -- [[Special:Contributions/78.55.26.106|78.55.26.106]] ([[User talk:78.55.26.106|talk]]) 23:46, 11 October 2009 (UTC) |
|||
:Totally agree with you. --[[User:HamburgerRadio|HamburgerRadio]] ([[User talk:HamburgerRadio|talk]]) 00:34, 12 October 2009 (UTC) |
|||
== Gzip bomb and Browsers == |
|||
A variation of this used to trash browsers and web spiders. The concept was to force gzip http, then send a gzipped file of a few gigs of zeros, which would hang the browser or spider. At the university I worked at we had one to fight a particularly pernicious spam spider on an academic wiki. Hidden display:none to the gzip bomb, and when the spider attacked again it would get swiftly felled by the gzip bomb. |
|||
Example is here: http://www.aerasec.de/security/advisories/html-bomb/ (Warning dangerous links!!!) [[Special:Contributions/202.89.176.227|202.89.176.227]] ([[User talk:202.89.176.227|talk]]) 07:29, 26 May 2016 (UTC) |
|||
== Next logical question… == |
|||
If they bail out on decompressing at a certain level of recursion, what prevents a virus from hiding in the N+1th level of recursion? |
|||
So if it's possible to zip bomb at, say, 4 recursions, the antivirus software decides to be safe and only decompress for 3. The real unzip software will go for all 4, so why not put your virus in a .zip that requires 4 recursions? <small><span class="autosigned">— Preceding [[Wikipedia:Signatures|unsigned]] comment added by [[User:PvtKing|PvtKing]] ([[User talk:PvtKing|talk]] • [[Special:Contributions/PvtKing|contribs]]) 13:17, 5 October 2012 (UTC)</span></small><!-- Template:Unsigned --> <!--Autosigned by SineBot--> |
|||
== [[tarbomb]] / [[decompression bomb]] == |
|||
"[[Zip bomb]] (not to be confused with [[tarbomb]])"<br> |
|||
'''Tarbomb''' redirects to [[tar (computing)]].<br> |
|||
'''tar (computing)''' has a section [[Tarbomb#Tarbomb]], with "'''Tarbomb''' redirects here. Not to be confused with [[decompression bomb]]"<br> |
|||
'''Decompression bomb''' redirects to Zip bomb.<br> |
|||
I salute the comedic tastes of whomever set this up. |
|||
--<span id="BlueNovember">[[User:BlueNovember|BlueNovember]] <sup>([[User talk:BlueNovember|talk]] <small>•</small> [[Special:Contributions/BlueNovember|contribs]])</sup></span> 16:52, 11 October 2017 (UTC) |
|||
Latest revision as of 02:44, 4 February 2024
 | This article is rated Start-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects: | ||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||
Merge with Zip of death
[edit]These two articles seem to be describing the same thing. This article is older, and the talk page of the other article suggests that the "zip bomb" usage is older. It would therefore probably make sense for the articles to be unified under the Zip bomb name. —phh (t/c) 00:00, 2 August 2007 (UTC)
- Don't think there will be any objections to that, it does make sense to merge them to zip bomb and create a redirect at Zip of death page. --Gimlei (talk to me) 10:33, 29 August 2007 (UTC)
- I decided to be bold, and performed the merge. Yay. --Gimlei (talk to me) 10:52, 29 August 2007 (UTC)
42.zip
[edit]The current text relating to 42.zip is inaccurate. 42.zip describes *several thousand copies of* a 4 gigabyte file, by way of nested zip files, each of which contains a copy of said 4 gig file. Were 42.zip fully decompressed, it would consume over 4 petabytes of disk space. —Preceding unsigned comment added by 64.81.57.203 (talk) 00:24, 3 November 2007 (UTC)
DOS??
[edit]I Disagree with the articles fist line that a zip of death is a DOS attack. The current Wiki for DOS also does not seem to reference anything like the Zip of death.
Zip of Death does one of two operations. It either cripples the antiviral software, similar to most worms. Or Destroys the entire system. If the system no longer turns on, or The antiviral software stop doing its job, these could be seen as a DOS, but under that Brod of a definition, every attack conceivably be as a DOS attack, rendering DOS attack meaningless term.
To put it another way, the 911 attacks are not DOS attack to the use of the elevators of the twin towers, it was just utter devastation.
DOS attack is meant to Deny, not Destroy (system corruption), or to Allow (New vunlabilties do to lack of antiviral) Larek (talk) 14:40, 6 June 2008 (UTC)
- I agree with you and changed the text. Leotohill (talk) 01:24, 27 December 2008 (UTC)
The Oracle Java security team list a zip bomb as a DOS attack. Filling the disk space of a computer does not destroy it it makes it hard to boot or run until and admin comes along and cleans it up.
www.oracle.com/webfolder/technetwork/tutorials/obe/java/SecureJavaCodingGuidelines/player.html — Preceding unsigned comment added by Biofuel (talk • contribs) 04:46, 21 June 2013 (UTC)
Carefully crafted
[edit]An explanation about the "carefully crafted" description would be interesting. What kind of files are compressed, why the use of multiple levels, etc. --LKRaider (talk) 23:41, 21 July 2009 (UTC)
revert replace of 42.zip with 45.1.zip
[edit]I think someone should revert that the text about the historcally meaningfull 42.zip was changed to a text about 45.1.zip. It is always possible, to increase the resulting size, but those files are nearly the same as 42.zip, but have less beckground. (Sorry for my broken english.) -- 78.55.26.106 (talk) 23:46, 11 October 2009 (UTC)
- Totally agree with you. --HamburgerRadio (talk) 00:34, 12 October 2009 (UTC)
Gzip bomb and Browsers
[edit]A variation of this used to trash browsers and web spiders. The concept was to force gzip http, then send a gzipped file of a few gigs of zeros, which would hang the browser or spider. At the university I worked at we had one to fight a particularly pernicious spam spider on an academic wiki. Hidden display:none to the gzip bomb, and when the spider attacked again it would get swiftly felled by the gzip bomb. Example is here: http://www.aerasec.de/security/advisories/html-bomb/ (Warning dangerous links!!!) 202.89.176.227 (talk) 07:29, 26 May 2016 (UTC)
Next logical question…
[edit]If they bail out on decompressing at a certain level of recursion, what prevents a virus from hiding in the N+1th level of recursion?
So if it's possible to zip bomb at, say, 4 recursions, the antivirus software decides to be safe and only decompress for 3. The real unzip software will go for all 4, so why not put your virus in a .zip that requires 4 recursions? — Preceding unsigned comment added by PvtKing (talk • contribs) 13:17, 5 October 2012 (UTC)
"Zip bomb (not to be confused with tarbomb)"
Tarbomb redirects to tar (computing).
tar (computing) has a section Tarbomb#Tarbomb, with "Tarbomb redirects here. Not to be confused with decompression bomb"
Decompression bomb redirects to Zip bomb.
I salute the comedic tastes of whomever set this up. --BlueNovember (talk • contribs) 16:52, 11 October 2017 (UTC)