[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
On Sat, 24 Mar 2018, Simon Waters wrote:
Someone at work still managed to write a C code snippet using "gets", buffer overflow in five lines of C, it is not enough for the compiler to warn on dodgy functions, they also need to go from the library.
/tmp/ccORR1gA.o: In function `main': test.c:(.text+0x16): warning: the `gets' function is dangerous and should not be used.Don't wory. Least of your problems. nothing compared to the emails I get about my wiringPi library for the Raspberry Pi. And now, Pi users are learning that all commands need to be prefixed with the magic 'sudo' command too and that
sudo curl url | bash is normal. Gordon -- The Mailing List for the Devon & Cornwall LUG https://mailman.dclug.org.uk/listinfo/list FAQ: http://www.dcglug.org.uk/listfaq