Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

automated vulnerability testing

From: "Choe.Sung Cont. PACAF CSS/SCHP" <Sung.Choe () hickam af mil>
Date: Sat, 29 Nov 2003 10:47:32 -0000
Bill Royds wrote:

If you are truly interested in security, you won't use C as the

programming

language. 

You must be shitting me..  C does have its inherent flaws but that doesn't
mean that there cannot be a secure application written in C.  This statement
represents FUD at its highest level.


It is security unfriendly by design.

C is designed to allow the programmer a high level of functionality and
freedom.  If he/she is laize-faire in his/her coding practices, that is an
issue with the programmer, not the language.

V/r,
Sung J. Choe
PACAF CSS/SCHP, PACAF NOSC
Information Assurance Analyst
DSN: 315-449-4317, Comm: 808-449-4317
 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: