Linked by Thom Holwerda on Thu 23rd May 2013 23:22 UTC
X11, Window Managers "Ilja van Sprundel, a security researcher with IOActive, has discovered a large number of issues in the way various X client libraries handle the responses they receive from servers, and has worked with X.Org's security team to analyze, confirm, and fix these issues."
Permalink for comment 562619
To read all comments associated with this story, please click here.
RE[8]: Overflowing
by sakeniwefu on Fri 24th May 2013 15:00 UTC in reply to "RE[7]: Overflowing"
Member since:

Truth is, that C++ standard library offers ways to do safe programming and modern C++ is quite good, but there are still many companies out there that forbid modern C++ practices. ;)

At that point can you really say use this or that language to solve your problems?
The main thing I have learnt from the C programming language is that I could be doing the same things as the last language of the week, only in a more regular and deterministic way - and if I am not, its probably for a good reason.
C is not perfect(as of C11 threading solutions still suck), but all other languages are substantially and provably inferior.
You can pass messages and duck-type in C89. You can have as many first-class functions as you wish. You can bound-check, garbage-collect, auto-release, and optimize your tails.
On the other hand, you can't do any of what C is good at in "first-class function" or "OOP" languages.
Frankly, I don't think any language could do better than C, given that users of other languages consider security to equal buffer overflow prevention.
Most web site defacements involve password files stored in plain text and accessible from Google.

Reply Parent Score: 2