Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Beta Programs
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
Vuln Dev
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
Re: Software leaves encryption keys, passwords lying around in memory
Oct 31 2002 01:46AM
Pavel Kankovsky (peak argo troja mff cuni cz)
On Wed, 30 Oct 2002, Dan Kaminsky wrote:
> Yes, but here you *hope* the compiler has the same semantics for
> "volatile" that you do. [...]
A compiler eliminating accesses (both read and write) to volatile
variables is a broken compiler.
I am not sure about older standards but C99 says you canno...
[ more ]
Privacy Statement
Copyright 2009, SecurityFocus
> Yes, but here you *hope* the compiler has the same semantics for
> "volatile" that you do. [...]
A compiler eliminating accesses (both read and write) to volatile
variables is a broken compiler.
I am not sure about older standards but C99 says you canno...
[ more ]