Is OpenSSH the new Microsoft?
Jerry Feldman
gaf at blu.org
Fri Sep 19 12:42:22 EDT 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 19 Sep 2003 12:12:28 -0400
kclark at CetaceanNetworks.com (Kevin D. Clark) wrote:
> If somebody were to wave a magic wand and magically add bounds
> checking to all C implementations, I'd still feel more comfortable if
> people were to attack these problems by adjusting their development
> and testing methodologies.
Many implementations of C do have bounds checking as an option. However,
some checkers and debuggers (such as Rational's Purify) do have bounds
checking. But, these options are expensive in terms of performance. They
also are not foolproof since pointers are often used.
C++ has the same problem when using built-in arrays. STL types, like
vector or string have some checking.
- --
Jerry Feldman <gaf at blu.org>
Boston Linux and Unix user group
http://www.blu.org PGP key id:C5061EA9
PGP Key fingerprint:053C 73EC 3AC1 5C44 3E14 9245 FB00 3ED5 C506 1EA9
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2-rc1-SuSE (GNU/Linux)
iD8DBQE/azHu+wA+1cUGHqkRAgBNAJ44tym/KAZEJKla92Rp3hpOtPuadQCdEhnV
H5MT4jvrVP9XM6HYo4MP2Jk=
=kDUP
-----END PGP SIGNATURE-----
More information about the gnhlug-discuss
mailing list