1 |
On Tue, Feb 28, 2006 at 12:47:33PM -0500, solar wrote: |
2 |
> I forget where I read it but I thought that unicode lead to overflows |
3 |
> and was considered a general security risk. I wish I knew where I read |
4 |
> that but I'm unable to find it. |
5 |
> |
6 |
> Any list readers know anything relating to that? |
7 |
> |
8 |
It's true that many overflows have been found in unicode aware |
9 |
applications, like the zillion unicode overflows in Internet Explorer |
10 |
for example. But that shouldn't lead to considering unicode a general |
11 |
security risk in my mind even though the apache team uses ascii in the |
12 |
default configuration to protect against bugs in poorly written |
13 |
applications. |
14 |
|
15 |
Regards, |
16 |
Bryan Østergaard |
17 |
-- |
18 |
gentoo-dev@g.o mailing list |