On Tue, Oct 19, 2004, Atro Tossavainen wrote:
>
> I know it compiles if I do that. It probably even works most of the
> time, but I imagined there was a specific point to your using snprintf
> instead of sprintf in the first place, and consequently, that using a
> wrapped sprintf (which does not check arguments the way snprintf should)
> in lieu of a proper snprintf could expose the program to just the kind
> of buffer overflow problems you must have wanted to avoid by using
> snprintf in the first place. Am I being unnecessarily paranoid?
Probably. The LEaP code was written ages ago, and modified by lots of
people. Probably, most or all of the sprintf's actually work in practice.
....good luck...dac
-----------------------------------------------------------------------
The AMBER Mail Reflector
To post, send mail to amber.scripps.edu
To unsubscribe, send "unsubscribe amber" to majordomo.scripps.edu
Received on Tue Oct 19 2004 - 16:53:00 PDT