[Dovecot] Re: password generation tool and additional hashes
Alexander Sabourenkov
screwdriver at lxnt.info
Tue Jul 27 09:27:20 EEST 2004
Hi.
Timo Sirainen wrote:
> On Sun, 2004-07-25 at 15:40, Joshua Goodall wrote:
>
>>I fleshed this out a bit. OK, a lot, because this was done to improve
>>interoperability with OpenLDAP. The attached diff:
>
>
> Committed with a few minor changes. And btw:
>
> +#define STRWIPE(s) do { \
> + char *c; \
> + for (c = s; *c != '\0'; c++) \
> + *c = '\0'; \
> +} while (0)
>
> safe_memset() exists pretty much for this reason. Compilers may sooner
> or later optimize out this kind of code because it seems useless to it.
> Microsoft's compilers already do in some cases.
That's called bzero() on *nix (POSIX.1).
Lets now pray that MS compilers won't optimize out security-critical parts of
code. Ha ha. Not funny.
--
./lxnt
More information about the dovecot
mailing list