[python-uk] Reviewing third-party packages

Mike Eriksson mike at swedishmike.org
Thu Jul 27 09:41:49 EDT 2017

On Thu, Jul 27, 2017 at 2:39 PM Andy Robinson <andy at reportlab.com> wrote:

> On 27 July 2017 at 15:33, S Walker <walker_s at hotmail.co.uk> wrote:
> > I suspect malicious phone-home (and other deliberately malicious
> security)
> > stuff would be very difficult to automatically test for
> Presumably you want to spy on outbound network activity from your test
> machine, rather than analysing code?
That is if they haven't written their code so it is aware of the
characteristics of 'malware analytics environments'. Basically it's dormant
if it thinks it is being observed. Something which is very common these
days. At least at the cutting edge of such things.

Cheers, Mike
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/python-uk/attachments/20170727/f0d0135b/attachment.html>

More information about the python-uk mailing list