The author literally *asked for security advice*, and then ignored it. I'm tryin... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		throwaway984393 on July 31, 2021 \| parent \| context \| favorite \| on: Show HN: Micro HTTP server in 22 lines of C The author literally asked for security advice, and then ignored it. I'm trying to explain why one should not just ignore it. There's a lot of novice programmers who read these threads and might think it's perfectly fine to use strcpy (outside of IOCCC submissions). And by the way, who the hell cares about security vulns in IOCCC submissions anyway? It's not supposed to be secure, it's supposed to be obfuscated.

jart on July 31, 2021 [–]

I don't think anyone asked for free advice from a foul-mouthed anonymous throwaway on how to secure their computer. If I was building a website I'd want to secure it from you not with you.

jijji on Aug 1, 2021 | [–]

so every secure programming C book ever written that tells people to never use strcpy() is wrong? please explain...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact