Date: Mon, 16 Dec 1996 21:51:12 +0100 (MET) From: J Wunsch <j@uriah.heep.sax.de> To: downsj@teeny.org (Jason Downs) Cc: marcs@znep.com, dv@kis.ru, freebsd-chat@freebsd.org Subject: Re: crontab security hole Message-ID: <199612162051.VAA08770@uriah.heep.sax.de> In-Reply-To: <199612161457.GAA18590@threadway.teeny.org> from Jason Downs at "Dec 16, 96 06:57:12 am"
next in thread | previous in thread | raw e-mail | index | archive | help
As Jason Downs wrote:
> Haven't any of you ever heard of a very simple and efficient non-stdio
> routine called, of all things, strncpy()?
Haven't any of you ever heard of the ugly misdesign of strn{cat,cpy}()
to not delimit your string if it's reaching the end? I think this is
violating the principle of least surprise... since they still have the
`str' in the name, not `mem'.
:)
--
cheers, J"org
joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE
Never trust an operating system you don't have sources for. ;-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199612162051.VAA08770>