Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I mean you could extract an archive you've downloaded to your filesystem and said archive could have funky file names and then you use this tool..

But I suppose it's not a very likely bug to have in this kind of tool.



Or “they” could enter your house at 2 am, drug you and hit you with a $5 wrench until they get access to your files :)


Never understood this line of thought. Not everything needs to be super secure. Not everything is going to be an attack vector. No one is going to deploy this onto a production server where this program specifically is going to be the attack vector.

Memory safety is cool and all, but a program that effectively sums a bunch of numbers together isn't going to cause issues. Worst case the program segfaults




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: