From owner-freebsd-hackers  Wed Feb 12 06:00:23 1997
Return-Path: <owner-hackers>
Received: (from root@localhost)
          by freefall.freebsd.org (8.8.5/8.8.5) id GAA29465
          for hackers-outgoing; Wed, 12 Feb 1997 06:00:23 -0800 (PST)
Received: from deepo.prosa.dk ([193.89.187.27])
          by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA29460
          for <freebsd-hackers@freebsd.org>; Wed, 12 Feb 1997 06:00:18 -0800 (PST)
Received: (from regnauld@localhost)
          by deepo.prosa.dk (8.8.5/8.8.4/prosa-1.1)
	  id OAA01397; Wed, 12 Feb 1997 14:59:15 +0100 (CET)
Message-ID: <Mutt.19970212145914.regnauld@deepo.prosa.dk>
Date: Wed, 12 Feb 1997 14:59:14 +0100
From: regnauld@deepo.prosa.dk (Philippe Regnauld)
To: michaelh@cet.co.jp (Michael Hancock)
Cc: freebsd-hackers@freebsd.org
Subject: Re: Increasing overall security....
References: <199702110604.WAA14933@dog.farm.org> <Pine.SV4.3.95.970212103543.5799C-100000@parkplace.cet.co.jp>
X-Mailer: Mutt 0.58
Mime-Version: 1.0
X-Operating-System: FreeBSD 2.2-BETA_A i386
In-Reply-To: <Pine.SV4.3.95.970212103543.5799C-100000@parkplace.cet.co.jp>; from Michael Hancock on Feb 12, 1997 11:28:24 +0900
Sender: owner-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

Michael Hancock (michaelh) ecrit/writes:
> 
> 2) We don't know if it operates correctly.  Sendmail 8.8.5 has around 106
> strcpy's in it and we don't know what the patch's effect will be in a
> production environment. 

	107 explicit.  Until you check:

	#define newstr(s)    strcpy(xalloc(strlen(s) + 1), s)

	... of which there are _many_.

	Anyway sendmail has a category of its own:
	"Lots of bugs, lots of people looking at it".

-- 
							-- Phil

-[ Philippe Regnauld   /   Systems Administrator   /    regnauld@prosa.dk ]-
-[ Location.: +55.4N +11.3E       PGP Key: finger regnauld@deepo.prosa.dk ]-