Wide Open Source

Wide Open Source
Elias Levy, SecurityFocus 2000-04-17

Is Open Source really more secure than closed? Elias Levy says there's a little security in obscurity.

Forget about strcpy() 2000-04-17
Anonymous

Looking for strcpy() and sprintf() is near to worthless for security auditing of software other than simple programs, written by beginners -- I have a lot of strcpy() in my programs, and there were only two cases of buffer overflows, both didn't involve either, and were caused by sloppy manipulation...

[ more ]