[7314] in bugtraq
Re: EMERGENCY: new remote root exploit in UW imapd
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Mon Jul 20 21:20:35 1998
Date: Thu, 16 Jul 1998 23:04:20 -0400
Reply-To: perry@piermont.com
From: "Perry E. Metzger" <perry@PIERMONT.COM>
X-To: Craig Spannring <cts@INTERNETCDS.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: Your message of "Thu, 16 Jul 1998 17:35:04 PDT."
<199807170035.RAA05041@bangkok.office.cdsnet.net>
Craig Spannring writes:
> C should not be used for trusted programs.
Unfortunately, there are not really good open source alternatives. GCC
is everywhere.
One thing that I wonder about, though, is that several years ago, some
guy in the U.K. did a bounds checking version of GCC. It would be Very
Neat if someone were to track that down and get the egcs people to
make it available.
In the long run, I'm hoping for Java front ends for GCC that make it
possible to do reasonable open source programming in a reasonable
language. Until then...
Perry
