Thanks a lot for the reply Mr Dave!
The info on wireshark was really helpful.
By flush I meant the buffer before being used in sprintf was clean.
On Mon, Apr 22, 2013 at 9:48 AM, Viktor Dukhovni <openssl-us...@dukhovni.org
> wrote:
> On Sun, Apr 21, 2013 at 10:17:31PM -0400, Dave Thompson wrote:
>
> > >scanf("%s",password);
>
> This also mishandles passwords containing whitespace. The code
> looks so poor that my guess is that someone is asking us to do
> their homework.
>
> --
> Viktor.
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List openssl-users@openssl.org
> Automated List Manager majord...@openssl.org
>
