diff options
| author | Paul Janzen <pjanzen@cvs.openbsd.org> | 2001-02-17 17:15:28 +0000 |
|---|---|---|
| committer | Paul Janzen <pjanzen@cvs.openbsd.org> | 2001-02-17 17:15:28 +0000 |
| commit | b08a58848e4fbc1d338e94ddec9704d594e2232a (patch) | |
| tree | 166ecbb2ab3ce0bdf1a3c96b4bd759d22b9b3bd1 /usr.bin | |
| parent | f9ec141e3fe6cc02c2490be77251e18b80b49a1e (diff) | |
It's not that I mind split infinitives. I just like to save'em for when
they're really needed.
Diffstat (limited to 'usr.bin')
| -rw-r--r-- | usr.bin/printf/printf.1 | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/usr.bin/printf/printf.1 b/usr.bin/printf/printf.1 index 7dd31b6eda1..52f5ed41907 100644 --- a/usr.bin/printf/printf.1 +++ b/usr.bin/printf/printf.1 @@ -1,4 +1,4 @@ -.\" $OpenBSD: printf.1,v 1.12 2000/10/19 18:18:54 aaron Exp $ +.\" $OpenBSD: printf.1,v 1.13 2001/02/17 17:15:27 pjanzen Exp $ .\" .\" Copyright (c) 1989, 1990 The Regents of the University of California. .\" All rights reserved. @@ -317,13 +317,13 @@ The command appeared in .Bx 4.3 Reno . .Sh CAVEATS -It is important to never pass a string with user-supplied data as a +It is important never to pass a string with user-supplied data as a format without using .Ql %s . An attacker can put format specifiers in the string to mangle your stack, leading to a possible security hole. .Pp -Be sure to always use the proper secure idiom: +Always be sure to use the proper secure idiom: .Bd -literal -offset indent printf "%s" "$STRING" .Ed |