Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 23 Nov 1999 14:26:26 -0800
From:      "David O'Brien" <obrien@FreeBSD.ORG>
To:        Kris Kennaway <kris@hub.freebsd.org>
Cc:        peter.jeremy@alcatel.com.au, current@FreeBSD.ORG
Subject:   Re: FreeBSD security auditing project.
Message-ID:  <19991123142626.D49964@dragon.nuxi.com>
In-Reply-To: <Pine.BSF.4.21.9911231412030.46173-100000@hub.freebsd.org>; from kris@hub.freebsd.org on Tue, Nov 23, 1999 at 02:15:52PM -0800
References:  <99Nov24.075703est.40331@border.alcanet.com.au> <Pine.BSF.4.21.9911231412030.46173-100000@hub.freebsd.org>

next in thread | previous in thread | raw e-mail | index | archive | help
> > A 'grep | wc' equivalent over the source tree gives:
> > 
> > gets        110
> > strcat     2860
> > strcpy     4717
> > strncat     167
> > strncpy    1514
> > sprintf    6839
> > vsprintf    133
> 
> *ouch* :-)

This means nothing out of context.  I hope we don't go on a witch hunt.
 
> > And these are the easy ones...
> Indeed :-(

Global search and replace of these can obfuscate code.  Things must be
looked for in context.

-- 
-- David    (obrien@NUXI.com)


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19991123142626.D49964>