Subject: Re: new rlogin security hole
To: None <>
From: VaX#n8 <>
List: current-users
Date: 08/19/1996 22:52:06
In message <>, "Perry E. Metzger" writ
>I'd say that an fgrep for strcpy, sprintf and a few others might get
>about 90% of the bugs...

Add strcat...
A quick vgrep for character buffers on the stack in SUID programs
wouldn't hurt either :) (for closer inspection.....)

(vgrep=visual grep)