"You people"? You really ought to consider working WITH users instead of making them into the enemy
"PVR-350 hasn't been sold for over half a decade"
It's available for sale on Amazon right now.
"people who aren't so cheap as to be unwilling to spend $20 on a video card"
Fine Mr. big spender. You send me the money and I'll buy something nicer.
I have something that works fine now. Why should I spend money to please you?
You said the code was "frozen and unchanging"
Therefore it's not costing anything to maintain. Then just leave it.
The problem with C strings is the same problem everyone has with C and assembler. It requires you to be absolutely competent. If you're not it does nothing to catch your mistakes. Blaming the current problems other people's "poor choices" is just rubbish.
The vulnerabilities to specially crafted attacks aren't mistakes. They were design choices that were correct given the knowledge the designers had at the time. Times have changed and nobody wants to pay to redo the code. I can just as easily craft a stack overflow using length type strings.
The author is short sighted or is deliberately making up something controversial to gain attention. In either case slashdot will you please ignore flag him?
One man's constant is another man's variable. -- A.J. Perlis