BTW ... .I was quoting on the memcpy issue:

Andras Slemmer wrote:
> Heartbleed is caused by an unchecked memcpy. In particular the size of the memory chunk to be copied is retrieved from a client request and and is not checked
>

IMO the computer is backward ..

On Wed, Apr 9, 2014 at 9:18 PM, Vasili I. Galchin <vigalchin@gmail.com> wrote:

http://corp.galois.com/blog/2014/4/9/heartbleed-a-great-time-to-think-about-incident-response.html

BTW I am always very careful when I use memcpy .. .hate that function ... read "buffer overrun" big time .....