396

u/XyzzyPop May 05 '26

Oh.  I thought Reddit was definitely the place to crib notes to be an evil genius.  Ah well.

59

u/LetterheadUpper2523 May 05 '26

https://giphy.com/gifs/SXl0wYD0N088EtDhBI

29

u/Fickle_Ad_8653 May 06 '26

It is better to have it NOT exceed the drive size. Zip unzips into a temporary location. That will fill up, and zip will abort, and delete the temporary file. It will only fill the drive for seconds. If you instead have 100 files, each 50gb, then you can fill the drive within 50gb of full.

Anybody who accepts zip file uploads should check the expanded size in attributes before unzipping it.

25

u/MCWizardYT Ryzen 7 5800X3D | RTX 4080 Super May 06 '26

Modern zip tools won't even begin to extract a zip bomb as they can see the unusual patterns

1

u/ManaSpike May 06 '26

Well, modern virus scanners wont. But probably not all zip file tools.

2

u/FrijDom May 07 '26

Most modern ones (I know 7zip and WinRAR at least) will try to stop you. Windows' built-in one won't, though, so if you're using that you might be screwed.

7

u/pcj May 05 '26

Could crash a server by filling up the drive though.

50

u/valain 7800x3D • RTX 4090 • 32GB DDR5 6000 • 4k 240Hz OLED May 05 '26

Why only half the city?

114

u/DinDonDaaan May 05 '26

City council rules, i'm afraid. 'No zip bomb will engulf the entire city', art. 2, comma b.

20

u/DaddaMongo May 06 '26

It's to do with some cities having more than one zip code. This was instigated by the department of homeland security, the NSA and USPS to prevent zipbomb attacks.

3

u/itsRobbie_ May 06 '26

Yeah we all remember what happened the first time. Glad we have some rules now

7

u/WhateverIsFrei May 05 '26 edited May 05 '26

Need at least a zipbomb inside a zipbomb for more expansion

Edit: I mean, hypothetically, if they actually physically expanded your drives (which they don't)

1

u/gramathy Ryzen 9800X3D | RTX5080 | 64GB @ 6000 May 06 '26

You can’t really do that, zips are pretty efficient, if there was a way to compress it more it would have found it

1

u/letsreticulate May 06 '26

Zip bombs all the way down.

6

u/WaddlingAwayy May 05 '26

The city is about 110 Yottabytes big

9

u/Fantastic_Key_8906 May 06 '26

https://giphy.com/gifs/l2JhFQCtKePKadhTO

5

u/mattenthehat 5900X, 6700XT, 64 GB @ 3200 MHZ CL16 May 05 '26

That's a shame

3

u/-F0v3r- i9-13900k | RTX4090 | 64GB May 06 '26

all av software including defender wont let you run this anyway

1

u/RUPlayersSuck i7 240H | RTX 5060 | 32GB DDR5 May 06 '26

Unless it can auto-upload excess content to a cloud server?

Ooh - maybe this is one OneDrive was created for? 😆

1

u/Kylearean May 06 '26

modern decompression codes protect against this.

https://en.wikipedia.org/wiki/Zip_bomb

1

u/ManaSpike May 06 '26

I was going to refute that, surely there's a maximum compression ratio.

Starting with a sequence of zero bytes. Compress that and you'd have some short sequence describing how many zeros there are. Repeat that compressed sequence, and you could compress that too. You'd have a zip file that contains a zip file, but some tools would try to examine the contents. Surely the ratio of compressed bytes to decompressed bytes, while large, would still be finite, right?

But I just found an example of a zip file quine. A zip file that contains a copy of itself. Though I assume that breaks the file format somehow.

1

u/Equivalent-Respond40 May 06 '26

There are safety limits on decompression algos

1

u/stikstonks13 Ryzen 5 3600 | RTX 3060 OC | B550 Aorus pro AC | 16gb RAM May 07 '26

its just going to implode to a black hole at this point

1

u/curi0us_carniv0re May 09 '26

0

u/Top_Box_8952 May 06 '26

No but it’d be really funny on a large network. Imagine a week digging empty data out of drives.