[James Sutherland] > Obviously, if crypt() CAN return NULL, for whatever reason, then it > must be properly handled and checked for. True -- unless the only time it will return NULL is for invalid input. Then it is sufficient to verify that it will never be given invalid input. In the case of crypt(), that shouldn't be too hard. Peter