I see I need to be more explicit... I must be missing your point. I keep hearing the mantra "Security is a Process". Well coping with security in the language domain makes our "process" more explicit and enforces our policies so we can't violate them willy-nilly. I just don't understand the reluctance to even consider enhancing security through the language. Is it mostly because it is a new some-what foreign idea? When I see Theo de Raadt lamenting...
It was so subtle, that type of bug, that we realized that this was no longer an API-type of programmer mistake, but that people don’t actually understand the C programming language, or even basic arithmetic with restricted-size variables.

This integer overflow thing is really scary because as programmers, we really can’t spot them; we can read the code, and they’ll just go right over our heads. We can’t even spot them, even if we know what we’re doing.

I think to myself, "Ah, another way our languages help defeat security". Same goes for 99% of all security breaches. Could have been avoided or rendered harmless by using better languages. Its one thing to put up with crappy languages in the present. But why do we insist on punshing ourselves forever by not exploring greener pastures? Sigh.

In reply to Re^9: Attack on Perl or Perl's need better PR (again) by Anonymous Monk
in thread Attack on Perl or Perl's need better PR (again) by wazoox

Title:
Use:  <p> text here (a paragraph) </p>
and:  <code> code here </code>
to format your post, it's "PerlMonks-approved HTML":


  • Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!
  • Titles consisting of a single word are discouraged, and in most cases are disallowed outright.
  • Read Where should I post X? if you're not absolutely sure you're posting in the right place.
  • Please read these before you post! —
  • Posts may use any of the Perl Monks Approved HTML tags:
    a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, details, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, summary, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr
  • You may need to use entities for some characters, as follows. (Exception: Within code tags, you can put the characters literally.)
            For:     Use:
    & &amp;
    < &lt;
    > &gt;
    [ &#91;
    ] &#93;
  • Link using PerlMonks shortcuts! What shortcuts can I use for linking?
  • See Writeup Formatting Tips and other pages linked from there for more info.