Hi!
There exists very dangerous virus 3APA3A (this is transliterated
Russian word, which may be translated as "infection" or "riff-raff"), which
sets in first positions of root directory entry IO.SYS (which points to
virus image) with Volume attribute. Bang! You can't see or remove this entry
if you load from diskette, but boot sector itself ignores Volume attribute
and loads only from this entry!
Proposal: boot sector should check if directory entry doesn't not
contain attributes beside RHSA (ie. (attr & 27h) == 0).
Also, why in boot32.asm KERNEL.SYS searched from the end of sector? Not
a big deal, but there possible to scan forward with shorter code.
-------------------------------------------------------
SF.Net is sponsored by: Speed Start Your Linux Apps Now.
Build and deploy apps & Web services for Linux with
a free DVD software kit from IBM. Click Now!
http://ads.osdn.com/?ad_id=1356&alloc_id=3438&op=click
_______________________________________________
Freedos-kernel mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/freedos-kernel
