Well that turned into a big discussion lol. I think I must say now though after all that I'll stick with printf() for now. It seems very useful so far and doing more than I need.

:)

If your doing commercial apps, I'd highly advise against that unless you understand the security aspect.

Bad programming is the root-cause to most of the computer security issues. That's why you get viruses that spread automatically by exploiting flaws in software.

Yes I do know what use mean - I'm not sure exactly all the ways of exploiting it. But at the current time I'm in my 2nd last year of study so for now it's what we have to be using. Mai advantage is this tutor we have I would have to say is the best one so far :D

Ok, so who here can come up with an input string that will cause the following code to execute /bin/ls on a Unix system?



You don't have to know all the ways of exploiting it. Just imagine if we change /bin/ls to, say, /bin/rm -rf /. One exploit should be enough to convince any reasonable programmer.

I see - Agreed.