C危险吗? [英] C dangerous?
问题描述
我在一本关于Perl和Common Gateway Interface的书中读到了一篇文章,并且它提到了C. b $ b它可能会损坏你的计算机。我不知道是什么?
这意味着标准或编译器的发布。我有点不高兴。更多
心烦意乱。我发送了Dennis Ritchie并发送电子邮件。我不知道他是否会回应,如果他获得了b $ b。有时他有时不这样做。 C怎么会损坏你的电脑?
比尔
----- =通过Newsfeeds.Com发布,未经审查的Usenet新闻= - ---
http://www.newsfeeds.com - #1世界新闻组服务!
----- ==超过100,000个新闻组 - 19个不同的服务器! = -----
I read an article in a book about Perl and Common Gateway Interface and it
mentioned C. It said that C could damage your computer. I don''t know wether
it meant the standard or compiler issuses. I was a little upset. Well more
upset. I sent Dennis Ritchie and email. I don''t know if he''ll respond if he
gets it. Sometimes he does sometimes not. How can C damage your computer?
Bill
-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 100,000 Newsgroups - 19 Different Servers! =-----
推荐答案
" Bill Cunningham" <无**** @ nspam.net>写道:
|我在一本关于Perl和Common Gateway Interface的书中读到了一篇文章,它是
|提到C.它说C可能会损坏你的电脑。我不知道
|它意味着标准或编译器的发布。我有点不高兴。更多
|烦乱。我发送了Dennis Ritchie并发送电子邮件。我不知道他是否会回应,如果他是
|得到它。有时他有时不这样做。 C怎么会损坏你的计算机?
用CI破坏计算机的唯一办法就是可以想象是编程一个糟糕的内核驱动程序捣毁一些非常脆弱的内核驱动程序
硬件。否则,您的操作系统会损坏。 :-)
然而,可能意味着从cgi使用C需要
相当谨慎。由于CGI程序接收来自任何(和/或b $ b潜在恶意)用户的输入,因此必须采取许多预防措施。对于
示例,将未经检查的参数传递给shell是个坏主意,
然后是一个例子; rm -rf /擦拭干净什么http用户可以
删除。
Perl有(除了动态数组等)一些叫做
$ b $的东西b污点模式,可以识别其中的一些问题,并采取适当的行动(中止)。
总结一下:C是不太可能的程序实际上损坏了你的计算机,但是一个破碎的C程序可能会乱用
(读取/转发/删除/无论如何)用户运行C的文件
程序可以访问。因为你通过CGI让任何人都运行这个
计划,这是一个主要的安全问题。
干杯
克里斯。
-
电子邮件地址位于> http://www.ifi.uio.no/~erikd/index.cgi
"Bill Cunningham" <no****@nspam.net> writes:
| I read an article in a book about Perl and Common Gateway Interface and it
| mentioned C. It said that C could damage your computer. I don''t know wether
| it meant the standard or compiler issuses. I was a little upset. Well more
| upset. I sent Dennis Ritchie and email. I don''t know if he''ll respond if he
| gets it. Sometimes he does sometimes not. How can C damage your computer?
The only way damaging the computer with C I can think of is
programming a bad kernel-driver trashing on some extremely fragile
hardware. Otherwise, your OS is broken. :-)
However, what is probably meant is that using C from cgi requires
quite some caution. Since a CGI program receives input from any (and
potential malicious) users, it must take a lot of precautions. For
example, passing your arguments unchecked to a shell is a bad idea,
for then a example "; rm -rf /" wipes clean whatever the http-user can
delete.
Perl has (in addition to dynamic arrays etc.) something called
taint-mode that can identify some of these issues and take appropriate
action (abort).
So to summarize: It is very unlikely that a C program actually damages
your computer, but a broken C program can mess
(read/forward/delete/whatever) the files the user running the C
program has access to. And since you through CGI let anyone run this
program, this is a major security concern.
Cheers
Chris.
--
email address available at http://www.ifi.uio.no/~erikd/index.cgi
Bill Cunningham写道:
Bill Cunningham wrote:
我在一本关于Perl和Common Gateway Interface的书中读到了一篇文章,它提到了C.它说C会损坏你的计算机。我不知道它是否意味着标准或编译器的发布。我有点不高兴。更让人心烦意乱。我发送了Dennis Ritchie并发送电子邮件。我不知道他是否会回应,如果他得到它。有时他有时不这样做。 C怎么会损坏你的电脑?
比尔
I read an article in a book about Perl and Common Gateway Interface and it
mentioned C. It said that C could damage your computer. I don''t know wether
it meant the standard or compiler issuses. I was a little upset. Well more
upset. I sent Dennis Ritchie and email. I don''t know if he''ll respond if he
gets it. Sometimes he does sometimes not. How can C damage your computer?
Bill
问题是如果你不是C,你可能会不小心推
你的电脑不在办公桌......
/ david
-
安德烈,一个简单的农民,只有一件事在他的脑海中悄悄地沿着东墙掠过:''安德烈,蠕动......安德烈,蠕动......安德烈,蠕动。''
- 未知
The issue is really that if you don''t C, you could accidentally push
your computer off the table...
/david
--
Andre, a simple peasant, had only one thing on his mind as he crept
along the East wall: ''Andre, creep... Andre, creep... Andre, creep.''
-- unknown
>怎么
C会损坏你的电脑吗?
can C damage your computer?
Blah,只是一些语言狂热者。他们只差一打。
-
gabriel
Blah, just some language zealot. They''re a dime a dozen.
--
gabriel
这篇关于C危险吗?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
