Talk:Fuzz testing

From Wikipedia, the free encyclopedia

You have new messages (last change).

Fuzzing apps I've used:

BED SPIKE fuzzer and fuzzer-1.1

fuzzer-1.1 was easy to modify

[edit] Clarification of intro needed

I clicked on the "fuzz testing" link in a user page (it read "I've been fuzz testing MediaWiki"). Although I'm far from a technological illiterate, the opening paragraph still doesn't quite make the meaning clear to the layperson. My questions are as follows:

  • The basic idea is to attach the inputs of a program ... Given that software is essentially intangible, it is unclear how one would "attach" anything. Additionally, it's unclear what "the inputs" means. I know the term "input," but can't make sense of it in this usage.
  • to a source of random data ("fuzz") ... need an example or clarification there, too, though it may become more self-evident once "attach the inputs" is cleared up.
  • (for example, ... by failing built-in code assertions) ... I submit that a typical layperson doesn't know what "code assertions" are.

I know that one of the Wikipedia guidance documents mentions that there's only so far you can water down some very technical subjects, and that some articles are likely only to be accessed by people who already have some background in the terminology and concepts of the field. However, I think that this introduction is trying hard to use simple terms, is currently unsuccessful in that attempt, and is very close to success. Lawikitejana 02:32, 7 September 2006 (UTC)

[edit] Credit

The introduction to the article appears to give credit for the idea of fuzz testing to Barton Miller and students in 1989. Yet at the bottom of the page, there is a link to folklore.org describing how fuzz testing was being done on the Mac on 1983! It seems that fuzz testing might have originated independently several times, perhaps with the Wisconsin group being the first to publish it, at least in a major journal (CACM, I think?). It might be more appropriate to have a "history" section on the page which discusses these multiple origins, instead of giving all the credit to one group.

[edit] Glitching?

why the two way links between Glitching and fuzz testing. i fail to see the connection. —The preceding unsigned comment was added by 189.172.38.108 (talk) 22:22, 10 February 2007 (UTC).

Retrieved from "http://en.wikipedia.org../../../f/u/z/Talk%7EFuzz_testing_c4ae.html"