Amateurs can't figure out why this code is potentially dangerous:
#include
int main()
{
char name[16];
printf("Please enter your name: ");
scanf("%s", name);
printf("Hello Mr. %s!\n", name);
return 0;
}
Amateurs can't figure out why this code is potentially dangerous:
Charles Lee
Other urls found in this thread:
xorl.wordpress.com
twitter.com
Joseph Hughes
this thread again
zzzzzzz...
Christian Kelly
>Amateurs
>Pajeets
There fixed it for you.
Joseph Cooper
retard+faggot OP.
your code is not dangerous, cause it will be prevented by the system to have a buffer overrun attack.
if you want to make this code dangerous you have to add
mprotect((void*)((unsigned int)Name & 0xfffff000), 1,
PROT_READ | PROT_WRITE | PROT_EXEC);
Michael Bailey
It assumer one's gender
Joseph Evans
The one you have with you.
Dominic Garcia
pajeet tier thread
Gabriel Smith
Only Cniles have this problem
Hudson Sanders
this, someone tweet about it
Sebastian Kelly
>7 posts
>nobody was gullible enough to do OP's homework
I'm proud of you, Jow Forums
Landon Rogers
rewrite it in Rust
Camden Rogers
I don't have this in my Microsoft OS
Dominic Walker
I'm still wondering what asshole went and put something like scanf in a language with fixed length strings. Seriously, that guy is a fucking retard.
Asher Phillips
You have been visited by the Laura of mediocre threads.
This thread is about to die with only 12 replies. OP, hopefully you got what you desired out of it and that it wasn't a total loss.
Zachary Reed
#include
int main()
{
char name[16];
printf("please, say your name: ");
scanf("%15s", name);
printf("Hello mr %s!\n", name);
return 0;
}
Matthew Hughes
>why this code is potentially dangerous
It's in C.
Easton Reyes
This code is potentially dangerous because it uses scanf. Literally compilers now warn you to not use scanf. People who don't know why this is dangerous are not amateurs, they never even tried.
The buffer overflow attack that this code allows is overwriting the return address on the stack and nothing can protect you from it because stack is meant to be written to.
Ayden Lee
>what is ROP
>Literally compilers now warn you to not use scanf
Well, gcc tells me nothing. Although every competent compiler nowadays has a stack protector which is enabled by default, so at best this can only be used as a DoS attack.
Aaron Turner
Because it's written in C.
Have sex and sage
Brayden Morales
I've seen password authentication like this.
Justin Martinez
use std::io;
fn main() -> io::Result {
let mut buffer = String::new();
println!("Please enter your name.");
io::stdin().read_line(&mut buffer)?;
println!("Hello {}!", buffer);
Ok(())
}
Hunter Powell
congrats, you know what a buffer overflow is OP. We're all so impressed with your pro knowledge.
Kayden Rivera
the noise in this simple snippet of code is fucking monstrous.
who in the right mind thinks
fn main() -> io::Result
is somehow better than
int main()
Jacob Smith
am I safe with Python?
Jayden Thomas
/thread
Elijah Thomas
buffer overflow?
Brandon Davis
Potential buffer overflow at the scanf, the amount read in might be longer than 16 chars (including the null). Hope you get an A!
Jack Young
blessed /p/oster
Tyler Bennett
>so at best this can only be used as a DoS attack.
Lol what, even in the example you have it is pretty possible to get past the canary and overwrite the return address and still not trigger a stack smashing error, since many programs use terminator canaries to avoid gathering entropy from the system.
Jose Baker
>basic user input is a security hazard in C
the following is also valid if you're autistic.
Who in their right mind thinks that introducing a security hole is somehow better than performing the same task in fewer lines safely, all while handling Unicode characters correctly?
use std::io;
fn main() {
let mut buffer = String:: new();
println!("please enter your name");
io::stdin().read_line(&mut buffer).unwrap();
println!("Hello {}!", buffer);
}
pic related
Levi Powell
anyone who understands types in programming languages?
Bentley Nguyen
Having a type which can contain an error message and which is integrated into the language makes more sense to me than "here's an error code with no context, go fuck yourself"
Thomas Russell
If you're a brainlet, you're never safe, but yeah, Python is safer.
Grayson Sanchez
using an integer for an error message is almost as retarded as using a byte for a unicode character
Carter Carter
What is wrong with ScanF and whats the modern alternative ?
Easton Ross
You're unable to specify the size of the buffer if you only use %s so it doesn't know to not write past the end of it (buffer overflow). There are ways to specify the buffer size with scanf though and even to make scanf allocate a buffer on the heap that's just the right size for you, but I believe the latter is a GNU extension.
Tyler Walker
In a larger program you still might be able to redirect control flow before the stack canary check. You might not even be able to right past the canary and touch the saved return address and could potentially overwrite function pointers.
Carter Scott
>right
meant write
Jason Wilson
Name could be longer than the variable?
Thomas Lee
Incredibly dangerous because it implies that the user is male
Asher Ortiz
I am almost certain if you were to build OPs code with any up-to-date compiler for a sane operating system using default settings for the stack protector, it wouldn't use a terminator canary, but feel free to show me a counterexample.
Joshua Harris
If you don't have access to a source of randomness, then you can't use random canaries (some embedded chips for example). Also, using a terminator canary can be forced by the OS, since reading from fs is essentially relying on OS specific features. xorl.wordpress.com
More saliently, canaries are randomized per program invocation, not per function invocation. As a result, if there were even one more scanf, you would leak your canary.