Why Coding Is Insecure 176
Stuart of Wapping writes "Even patches are not safe, especially if they come from a closed background (maybe) - An interesting article on why coding, is naturally insecure, from SecurityFocus."
The optimum committee has no members. -- Norman Augustine
Redirecting to google.com (Score:2, Informative)
http://www.google.com/search?q=cache:M13ch6-wvb
so use it (Score:2, Informative)
Your argument that you have to do your own bounds checking, every time, is wrong. If you have a good grasp of the C language, you should be able to code perfectly secure programs that only perform bounds-checking on external (e.g. user-input) strings.
C is a lot like X: the people who criticise it are exactly the people who don't understand it. If you want bounds-checking, use bounds-checking. If you want garbage collection, use garbage collection. If you want the specific warnings that you've mentioned, use lint. ALL OF THESE TOOLS ALREADY EXIST AND ARE IN COMMON USE. It's alright if you're ignorant of these tools, but for heaven's sakes don't blame the C language for them.
Re:NSA Linux (Score:3, Informative)
The iptables connection tracking security flaw was a major flaw.