Re: stackguard-like embedded protection

["Bluefish (P.Magnusson)" <11a () GMX NET>]

>       printf(user_data);
> can become
>       printf("%s", user_data);

Has anyone made a tool for scanning for these lines? I played around with
grep's, looking for 'printf' without '"'. Perhaps the sources I looked at
was simply unfortunately anoying examples, but there was tons of stuff
like:
  sprintf(s,
          "Formatation string",
          ...

Which recieves Bluefish's official price for stuff really anoying
'feature'... So I really would like to see a grepprintf script to combat
these evil \n in sources :)

..:::::::::::::::::::::::::::::::::::::::::::::::::..
     http://www.11a.nu || http://bluefish.11a.nu
    eleventh alliance development & security team