Clarence Verge wrote:
> I'm too revolted to test it. |:\(
Not me i'm not.
DOS dont have it as a backdoor: it all depends on what you use
to place the file in the file loader of DOS.
COMMAND.COM will send a file to the loader ONLY if it has a .COM
or .EXE extension. As far as I know, DOS version 1 might have ran
only .COM? Would like to get this confirmed.
But I do know for certain that the (default) COMMAND.COM will search
for the 4D 5A signatures in .COM and .EXE.
Therefor, .SCR files and what-ever-you-wish will NOT run. No matter
what header they got.
Windows, however, seems to be capable of pusing programs into the
loader all by itself. And since you can define what is an executable
and what is not in Windows... this ability is not really secure.
This isnt such an innovative feature special only in Windows:
I've seen other programs "chaining" executable files as well. Take
for example the famous game Maniac Mansion 2: Day of the Tentacle.
In the game, you also get the first, original EGA game for free as a
bonus.
The main EXE of the first game has been renamed to OVL and is ran from
the second game, if you find an easter egg. (the first game is ran
if you turn on Ed Edison's computer in the second game.).
So basicly, it looks like this backdoor you're so fussed about is
still something that you can only find in Windows... and in some
pretty quirky COMMAND.COM replacements. :)
But MS-DOS is still "immune", if this is the term
you wish to use.
(Ack. Why do I feel like I wrote a really warpped up
letter that is hard to understand?..)
