Forbidden Fruit
Microsoft just announced that they were adding the function memcpy(), a popular C function used to chunks of memory, to their list of function calls banned under their secure development lifecycle. Though this is probably for the best, I imagine there are many Microsoft employees who wish this were not the case. That isn’t to say that they don’t care about the security of their applications, which is why it was banned to begin with. Every programmer at some point or another has probably wanted to use a function or language feature they shouldn’t; whether it be memcpy, goto, break, or set!.
(more…)