cvs commit: src/games/fortune/fortune fortune.c
M. Warner Losh
imp at bsdimp.com
Sat Jul 23 23:30:39 GMT 2005
In message: <20050723230711.GD842 at wantadilla.lemis.com>
"Greg 'groggy' Lehey" <grog at lemis.com> writes:
: > If Rush gets more quotes than normal, and that annoys people to find
: > the real problem, we shouldn't mask it. It is a really bad choice
: > from a security point of view.
:
: So it's better to back perfectly valid code rather than to look for
: the real culprit? What kind of security is that?
I'm saying we should fix the real, underlying problem. Kludging
around the symptom, like you did with fortune, only prolongs the time
we have the real, underlying problem.
Warner
More information about the freebsd-current
mailing list