From xemacs-m  Mon Feb 17 18:42:31 1997
Received: from jagor.srce.hr (hniksic@jagor.srce.hr [161.53.2.130])
	by xemacs.org (8.8.5/8.8.5) with ESMTP id SAA24330
	for <xemacs-beta@xemacs.org>; Mon, 17 Feb 1997 18:42:30 -0600 (CST)
Received: (from hniksic@localhost)
          by jagor.srce.hr (8.8.5/8.8.4)
	  id BAA09745; Tue, 18 Feb 1997 01:42:30 +0100 (MET)
Sender: hniksic@public.srce.hr
To: xemacs-beta@xemacs.org
Subject: Re: Safe elisp functions?
References: <199702172311.PAA23394@newman> 	<m2zpx356pc.fsf@altair.xemacs.org> <199702172345.PAA23641@newman> <m2wws755ux.fsf@altair.xemacs.org>
X-URL: ftp://gnjilux.cc.fer.hr/pub/unix/util/wget/
X-Attribution: Hrv
X-Face: &}4JQk=L;e.~x+|eo]#DGk@x3~ed!.~lZ}YQcYb7f[WL9L'Z*+OyA\nAEL1M(".[qvI#a2E
 6WYI5>>e7'@_)3Ol9p|Nn2wNa/;~06jL*B%tTcn/XvhAu7qeES0\|MF%$;sI#yn1+y"
From: Hrvoje Niksic <hniksic@srce.hr>
Date: 18 Feb 1997 01:42:30 +0100
In-Reply-To: Steven L Baur's message of 17 Feb 1997 16:13:10 -0800
Message-ID: <kigenefx7ux.fsf@jagor.srce.hr>
Lines: 26
X-Mailer: Gnus v5.4.13/XEmacs 19.14

Steven L Baur <steve@miranova.com> writes:

> I'm a network administrator, so I have a higher level of paranoia than
> a lot of people.  At the moment your message arrived I was on the
> phone with a client whose system was overrun by a hacker this past

You must mean a cracker!

> We have at least one semi-reproduceable crash in the GIF C code that
> is typically exercised by usage of W3.  If you can *guarantee* me that
> the GIF code can *never* overrun the stack, I'll consider changing my
> position.  But I want a full security audit done of all functions put
[...]

I don't understand what's the point of these stack-overrunning
stories.  The worst that can happen is that XEmacs crashes (like
netscape crashes on Java).  So what?

I hope you don't intend to run XEmacs setuid root, which would make
your fears legitimate.

-- 
Hrvoje Niksic <hniksic@srce.hr> | Student at FER Zagreb, Croatia
--------------------------------+--------------------------------
* Vi is the God of editors.
* Emacs is the editor of Gods.

