| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <868ynbxzxe.fsf@blue.stonehenge.com> From: merlyn at stonehenge.com (Randal L. Schwartz) Subject: Re: Gaim festival plugin exploit >>>>> "Shawn" == Shawn McMahon <smcmahon@....com> writes: Shawn> The fact that he's arguing with Randal is not the problem, Randal makes Shawn> mistakes too. Precisely. Some of them a matter of public record: http://www.lightlink.com/fors/ :) Shawn> The fact that he's arguing what the Perl interpreter does Shawn> without looking at the source code is the problem. The fact that he's Shawn> arguing that way to Randal is just icing on the cake, right up there Shawn> with the David Korn / Microsoft story almost. Almost; Randal is Just Shawn> Another Perl Hacker, he didn't write the code in question. True, but these are things that have not changed function since Perl version 2, and I've been around since then. :) The fact that Perl doesn't use /bin/sh for system(), exec(), `backticks`, or pipe-open when they are simple enough is a very cool fact. And I like promoting that fact. Save forks(). Use Perl. :) -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 <merlyn@...nehenge.com> <URL:http://www.stonehenge.com/merlyn/> Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training!
Powered by blists - more mailing lists