If every programmer did that, there would be no buffer overrun problems :-)
I *always* check stuff like that in my programs. Not only are there security
issues, but there are the possibilities of crashes when the buffer gets over
run - it's very poor programming practice to not do this. Which doesn't say
much for all of the programs out there you see that are vulnerable to buffer
over runs.....
----- Original Message -----
From: "HL Server" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, October 16, 2001 2:38 PM
Subject: Re: [hlds] Crash Server on Map Change.................
> If this is true, then this is poor programming ...
>
> To idiot proof it, you would truncate vulnerable strings ...
>
> if len(name) > 30
> { name[30] = NULL; }
>
> Something like that ... but I can't imagine this wouldn't already be in
the
> code ...
>
> At 04:58 AM 10/17/2001 +0800, you wrote:
> >If someone use name like this:
> >Nick%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%.
> >
> >HLDS would crash on map change.....buffer overflow?
> >
> >_______________________________________________
> >To unsubscribe, edit your list preferences, or view the list archives,
> >please visit:
> >http://list.valvesoftware.com/mailman/listinfo/hlds
>
> _______________________________________________
> To unsubscribe, edit your list preferences, or view the list archives,
please visit:
> http://list.valvesoftware.com/mailman/listinfo/hlds
>
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds
