Date: Fri, 14 Aug 1998 21:39:02 +0200 From: Olivier Galibert <galibert@pobox.com> To: hackers@FreeBSD.ORG Subject: Re: 64-bit time_t Message-ID: <19980814213902.D9044@loria.fr> In-Reply-To: <199808141746.KAA20357@shasta.wstein.com>; from Joseph Stein on Fri, Aug 14, 1998 at 10:46:55AM -0700 References: <199808141733.LAA24664@lariat.lariat.org> <199808141746.KAA20357@shasta.wstein.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Aug 14, 1998 at 10:46:55AM -0700, Joseph Stein wrote: > There is no such thing as a "safe" tool. You can write code in assembly > language and still end up with security holes. Until someone writes a > compiler (for *any* compiled language) that will test for every possible > conceivable security holes (volunteers needed...) there will be security > holes in *every* application -- that can be fixed when found, using, the > "unsafe" tool that was used to create it. There are safe tools. They are called "formal languages" or "formal methods" and combine the power of strictly specified programming languages and mathematical provers. Writing something like sendmail of telnetd with what currently exists is out of the picture, but they already are used to prove sections of life-critical code. Just a matter of time. OG. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980814213902.D9044>