Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!usc!apple!agate!shelby!msi.umn.edu!cs.umn.edu!cybrspc!roy
From: roy%cybrspc@cs.umn.edu (Roy M. Silvernail)
Newsgroups: comp.lang.c
Subject: Re: What's so bad about scanf anyway???
Message-ID: <Hm2Js1w163w@cybrspc>
Date: 13 Nov 90 03:16:40 GMT
References: <1990Nov12.050450.7194@Solbourne.COM>
Organization: Villa CyberSpace, Minneapolis, MN
Lines: 14

imp@marvin.Solbourne.COM (Warner Losh) writes:

> gets() is a bad function to use when you don't have total control over
> the input (like a user typing at a program).  Since it can't check to
> see if the input line is too large for the buffer, "bad things" can
> happen as a result.

Thank you! I hadn't thought of this possibility. Anything I can do to
make my stuff more fool-resistant... (in anticipation of the
new-model-year improved fools ;-)
--
Roy M. Silvernail |+|  roy%cybrspc@cs.umn.edu  |+| #define opinions ALL_MINE;
main(){float x=1;x=x/50;printf("It's only $%.2f, but it's my $%.2f!\n",x,x);}
"This is cyberspace." -- Peter da Silva  :--:  "...and I like it here!" -- me