Dries Schellekens <gwyllion@ulyssis.org> writes:

> OpenBSD has audited their IKE parsing code early 2004 and thus is not
> vunerable:
> http://marc.theaimsgroup.com/?l=openbsd-misc&m=113199092403670&w=2

It is true that OpenBSD audited their code, and that it's been found
not vulnerable to the test cases presented, and that a causal
relationship exists from the first thing to the second.

However, that sentence can also be read as meaning that the audit
necessarily implies the code's safety, and it is this which caused
several people to take issue with it --- including me, though I came
in late enough to see the response to Thor's comment first.

-- 
(let ((C call-with-current-continuation)) (apply (lambda (x y) (x y)) (map
((lambda (r) ((C C) (lambda (s) (r (lambda l (apply (s s) l))))))  (lambda
(f) (lambda (l) (if (null? l) C (lambda (k) (display (car l)) ((f (cdr l))
(C k)))))))    '((#\J #\d #\D #\v #\s) (#\e #\space #\a #\i #\newline)))))