home *** CD-ROM | disk | FTP | other *** search
- Path: rcp6.elan.af.mil!rscernix!danpop
- From: danpop@mail.cern.ch (Dan Pop)
- Newsgroups: comp.lang.c
- Subject: Re: Why does the "universal bugfunction" gets() survive in 1996?
- Date: 22 Mar 96 18:54:32 GMT
- Organization: CERN European Lab for Particle Physics
- Message-ID: <danpop.827520872@rscernix>
- References: <DoDGq8.Dqq@scn.org> <4irokq$j1b@ferrari.NetXpress.com>
- NNTP-Posting-Host: ues5.cern.ch
- X-Newsreader: NN version 6.5.0 #7 (NOV)
-
- In <4irokq$j1b@ferrari.NetXpress.com> ghporter@NetXpress.com (Glenn H. Porter) writes:
-
- >kurt@scn.org (Kurt Cockrum) wrote:
- >
- >>especially since it's inherently dangerous and is potentially a grave disservice
- >>to any user?
- >
- >If you use a function that dosn't check the length of the buffer, then
- >you have to check the buffer. It's that simple.
-
- I'm afraid it's not that simple. Once you call gets there is no way
- to check the buffer. By the time gets returns (if ever :-) it may be
- already too late. The fingerd author learned this the hard way, in 1988 :-)
-
- >If you don't like it, don't use it.
-
- Is there anybody having at least half a clue and liking gets?
- This was the point of the original poaster.
-
- Dan
- --
- Dan Pop
- CERN, CN Division
- Email: danpop@mail.cern.ch
- Mail: CERN - PPE, Bat. 31 R-004, CH-1211 Geneve 23, Switzerland
-