Full Disclosure mailing list archives

RE: Microsoft Cries Wolf ( again )


From: "Mike Fratto" <mfratto () nwc com>
Date: Tue, 1 Jul 2003 12:55:51 -0400

 
Along these lines, if the C programming language had a proper 
string data type from day one, buffer overflows would be much 
less common today.  

Not to get into a religious argument over this, but if programmers did
proper data scrubbing and bounds checking regardless of the language, there
wouldn't be much of a problem either. Granted, I am not uber programmer (I
have hacked together proggies of a couple of thousand lines for my own use
and I am sure there were lots of problems in them) but even being self
taught, I learned to do data scrubbing and bounds checking just for
reliability. I have to think it is taught in programming 101.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


Current thread: