Secure Coding mailing list archives

Re: Scripting Languages and Secure Coding

From: ljknews <ljknews () mac com>
Date: Sat, 06 Dec 2003 17:08:48 +0000

At 1:43 PM +1100 12/5/03, Louis Solomon [SteelBytes] wrote:

The C compiler and popular C library routines do not have bugs


If you think this you are deluding yourself.  No body of code as large
as either is bug-free.


acutally that's a good point if you think of it loosely ...
think of all of those unsafe string funcs that cause many of the current
buffer overflows probs.


But that is a natural consequence of choosing C with it's null terminated
(rather than counted) strings.

Current thread:

Re: Scripting Languages and Secure Coding + code, (continued)
- - - Re: Scripting Languages and Secure Coding + code securecodingorg (Dec 04)
    - Re: Scripting Languages and Secure Coding + code Jeremy Thibeaux (Dec 04)
    - Re: Scripting Languages and Secure Coding + code Louis Solomon [SteelBytes] (Dec 05)
    - Re: Scripting Languages and Secure Coding + code David M. Wilson (Dec 05)
    - Re: Scripting Languages and Secure Coding + code Ghita Gh. Serban (Dec 05)
  - Re: Scripting Languages and Secure Coding + code securecodingorg (Dec 04)
- Re: Scripting Languages and Secure Coding Jeremy Thibeaux (Dec 03)
  - Re: Scripting Languages and Secure Coding Bob Toxen (Dec 04)
    - Re: Scripting Languages and Secure Coding der Mouse (Dec 04)
    - Re: Scripting Languages and Secure Coding Louis Solomon [SteelBytes] (Dec 05)
    - Re: Scripting Languages and Secure Coding ljknews (Dec 06)
    - Re: Scripting Languages and Secure Coding Bob Toxen (Dec 05)
- RE: Scripting Languages and Secure Coding Tegels, Kent (Dec 03)