[cap-talk] Confessions of a C programmer
John R. Strohm
strohm at airmail.net
Thu Sep 24 05:35:30 PDT 2009
Yes, we know how to eliminate the common vulnerabilities, and we have known how
to do it for quite literally DECADES. (Plessey 250, anyone? Burroughs B5000
series? Gypsy? Ada?)
Once you admit that we have the technology, and have had it for a long time, you
have to ask the next question: Why isn't it being used?
----- Original Message -----
From: "Sandro Magi" <naasking at higherlogics.com>
To: "General discussions concerning capability systems."
<cap-talk at mail.eros-os.org>
Sent: Wednesday, September 23, 2009 1:14 PM
Subject: Re: [cap-talk] Confessions of a C programmer
> Raoul Duke wrote:
>> not everybody believes in PCC so much, apparently:
>> http://www.cs.virginia.edu/~evans/talks/horses.ppt
>
> This is just arguing that we already the have tools and techniques
> needed to eliminate the most common vulnerabilities in software, so we
> shouldn't wait for PCC to do it for us. It's not a controversial point,
> and I agree with it completely.
>
> Sandro
>
> _______________________________________________
> cap-talk mailing list
> cap-talk at mail.eros-os.org
> http://www.eros-os.org/mailman/listinfo/cap-talk
>
More information about the cap-talk
mailing list