:: Re: [DNG] Systemd Shims
Top Page
This message is part of the following thread:
M----+++\the complete thread tree sorted by date
M--\.MMMMRainer Weikusat at <-
M+\M\Rainer Weikusat at ->
Delete this message
Reply to this message
Author: Rainer Weikusat
Date:  
To: dng
Subject: Re: [DNG] Systemd Shims
Edward Bartolo <edbarx@???> writes:
> I am not assuming anything and understand the risks of buffer
> overflows. The first step I am taking is to make the code function.
> The second step is further debug it until it behaves properly and the
> third step is to correct any potential security issues.

Realistically, the first step is 'make the code function', the second
step is 'graduate from university based on your thesis' and the 3rd was
called 'heartbleed', IOW, that's not going to happen in this way. If
you're doing string processing in C, try to do it correctly from the
start. That's much easier than retrofitting proper length/ size handling onto
some working code.
This message was posted to the following mailing lists:
dng
Mailing List Info | Nearby Messages		<-Re: [DNG] Systemd ShimsRe: [DNG] Systemd Shims->

Donate to Dyne.org

dyne.org open discussions
administrated by dyne.org hackers		Lurker (version 2.3)