|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Secure coding in C (was Re: Administrivia #4883)
Subject: Re: Secure coding in C (was Re: Administrivia #4883)
From: Warner Losh (imp
VILLAGE.ORG)
Date: Mon Jan 17 2000 - 13:08:56 CST
- Next message: Jon Hadley: "Re: Netdetect.exe with backdoor? (ICQ)"
- Previous message: Jon Hadley: "Re: ICQ >= 99* + CC Data"
- In reply to: Brian Masney: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Next in thread: Tellier, Brock: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Next in thread: Blue Boar: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Reply: Warner Losh: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Reply: Tellier, Brock: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
In message <Pine.LNX.4.03.10001161207550.7428-100000brian.citynet.net> Brian Masney writes:
: On some UNIX systems, snprintf does not guarentee that it will nul
: terminate the string. I know on some older versions of libc5 (sorry,
: don't have an exact version), if the buffer you was writing to got to the
: max size you passed it, it would stop there without adding the nul. So,
: you'll run into problems later on if you pass it to a string
: function (like strcpy())
snprintf is *DEFINED* to NUL terminate the string. Systems that don't
do this are broken. That's why it is used as widely as it is.
Warner
- Next message: Jon Hadley: "Re: Netdetect.exe with backdoor? (ICQ)"
- Previous message: Jon Hadley: "Re: ICQ >= 99* + CC Data"
- In reply to: Brian Masney: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Next in thread: Tellier, Brock: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Next in thread: Blue Boar: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Reply: Warner Losh: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Reply: Tellier, Brock: "Re: Secure coding in C (was Re: Administrivia #4883)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Mon Jan 17 2000 - 15:27:32 CST