RE: safe strcpy()?

From: Hall, Philip (phallat_private)
Date: Tue Jan 28 2003 - 20:00:33 PST

Next message: Timo Sirainen: "Re: safe strcpy()?"

Previous message: mlhat_private: "Re: safe strcpy()?"
Maybe in reply to: Ed Carp: "safe strcpy()?"
Next in thread: Daniel Reed: "RE: safe strcpy()?"
Next in thread: Michael Howard: "RE: safe strcpy()?"
Reply: Daniel Reed: "RE: safe strcpy()?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Of course, the real way to build secure software is not 
> to use "safe" functions, but to check data validity :-)

Hang on, that sounds akin to not having locks (safe functions) on your front door, but posting a guard (data validation) at the end of your drive way...hmmmmm I think I'll stick to my eXtreme Defensive Programming (XDP) and be paranoid about everything...unless you meant that by *adding* the data validity to the 'safe' functions to beef them up...?

--phil

Next message: Timo Sirainen: "Re: safe strcpy()?"
Previous message: mlhat_private: "Re: safe strcpy()?"
Maybe in reply to: Ed Carp: "safe strcpy()?"
Next in thread: Daniel Reed: "RE: safe strcpy()?"
Next in thread: Michael Howard: "RE: safe strcpy()?"
Reply: Daniel Reed: "RE: safe strcpy()?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jan 29 2003 - 12:49:20 PST