[cap-talk] Midori in The Register

Ben Laurie benl at google.com
Wed Aug 6 14:34:07 CDT 2008


On Wed, Aug 6, 2008 at 7:21 PM, Jonathan S. Shapiro <shap at eros-os.com> wrote:
> On Wed, 2008-08-06 at 17:44 +0100, Ben Laurie wrote:
>> On Wed, Aug 6, 2008 at 4:32 PM, Jonathan S. Shapiro <shap at eros-os.com> wrote:
>> > On Wed, 2008-08-06 at 15:40 +0100, Ben Laurie wrote:
>> >> Well, since you took me to task for calling it type-safe, I must
>> >> conclude that it is.
>> >
>> > Ben: read it again. I was agreeing with you.
>>
>> In the past you have told me I must not call what I am doing in C
>> type-safety. That is my point.
>
> I tend to agree with MarkM that if it can't be enforced automatically we
> don't want to think of it as "safe".
>
> That notwithstanding, I still think that the practice being used in
> Apache is an excellent thing.

OK. So you agree that

"That is: managed code cannot guarantee security, but type-unsafe code
(which is not quite the same as unmanaged code) does guarantee the
absence of security."

is incorrect.


More information about the cap-talk mailing list