[122763] in cryptography@c2.net mail archive
Re: User interface, security, and "simplicity"
daemon@ATHENA.MIT.EDU (Victor Duchovni)
Wed May 7 13:55:06 2008
Date: Tue, 6 May 2008 21:44:34 -0400
From: Victor Duchovni <Victor.Duchovni@morganstanley.com>
Cc: Perrys crypto list <cryptography@metzdowd.com>
In-Reply-To: <4820F784.9010005@echeque.com>
On Wed, May 07, 2008 at 10:27:48AM +1000, James A. Donald wrote:
> Dynamic strings tempt people to forget about enforcing
> length limits and forget about correctly handling the
> case when the length limits are exceeded.
This too is dealt with. Message sizes are bounded, recipient counts
are bounded, duplicate elimination cache sizes are bounded, command
lengths are bounded, logical header lengths are bounded, body content
is processed 2K bytes at a time...
The requirement is stronger than just not running a single process out of
memory, the entire multi-process Postfix is designed to run in (realistic)
bounded memory (no "fork: out of memory").
--
/"\ ASCII RIBBON NOTICE: If received in error,
\ / CAMPAIGN Victor Duchovni please destroy and notify
X AGAINST IT Security, sender. Sender does not waive
/ \ HTML MAIL Morgan Stanley confidentiality or privilege,
and use is prohibited.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
