D.A. Harris wrote:
<> Maybe the point of the note I saw was that there are numerous strcpy, strcmp,
<> and strcat's that exist in procmail's source, which might need conversion
<> to strncpy, etc, etc., so as to minimize potential future buffer overflows.
Yep. It was bugtraq and the person (I've forgotten who - I do apologise
for not being able to attribute!) pointed out precisely what you say
% cd build/procmail-3.11pre7/src
% egrep 'strc(py|at)' *.c | cut -f1 -d: | uniq -c | sort -rn
R A Lichtensteiger rali(_at_)meitca(_dot_)com -or-
"Yes, you're doing things right, but are you doing the right things?"
"Nope. I'm just doing something dumb fast."