Clearing sensitive in-memory data in perl

Adam Shostack adam at
Sat Sep 17 12:17:25 EDT 2005

On Sat, Sep 17, 2005 at 11:40:26AM -0400, Victor Duchovni wrote:
| On Sat, Sep 17, 2005 at 11:53:20AM +0100, Ben Laurie wrote:
| > >My view is that C is fine, but it needs a real library and programmers
| > >who learn C need to learn to use the real library, with the bare-metal
| > >C-library used only by library developers to bootstrap new safe
| > >primitives.
| > 
| > So wouldn't the world be a better place if we could all agree on a 
| > single such library? Or at least, a single API. Like the STL is for C++.
| > 
| Yes, absolutely, but who is going to do it?

The glibc people?  The openbsd people?

I recall that for a while if you used gets, the linker would
complain.  I can't recall what platform this was on.  BSDi, maybe?


The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at

More information about the cryptography mailing list