upvote

points

by sgt1 days ago |
comments
upvoteby geocar1 days ago|
next
[-]
100% it's the safer option.

The software with the best security track record of all time is written in C.

reply
upvoteby foobar12742781 days ago|
parent|
next
[-]
I'm curious which software you have in mind. Ex: seL4 is technically C, but I'd say the theorem prover is doing most of the real work there.
reply
upvoteby geocar1 days ago|
parent|
[-]
Specifically? I'm thinking of qmail.

qmail was at one point the second most widely deployed email server, handling the majority of online mail. It wasn't a research project; it's not obscure. Yahoo used to use it.

And what I mean by track record: After more than a decade after the last published version, a theoretical attack was found requiring special setup uncommon for a sysadmin, and impossible ten years prior.

When anyone thinks about how to build reliable secure software, I think they should be thinking of qmail because it really has no public source-available equal, except maybe djbdns.

seL4 on the other hand makes some specious claims about some ten year old version of itself, and so few people have even heard about it you thought it important to remind it is "technically" C -- qmail isn't like that at all: There is no prover, no test suite, and almost no metaprogramming of any kind. It's just C.

reply
upvoteby sgt1 days ago|
parent|
prev|
next
[-]
I would maybe not go that far, look at ADA, SPARK etc.
reply
upvoteby dvhh1 days ago|
parent|
prev|
next
[-]
I would recognize sarcasm when I see it. But statistically, that could be true, considering the amount of C code running ( probably far less than COBOL or FORTRAN ), Compared to the relatively small amount of Rust code vs the amount of faults observed with it.
reply
upvoteby slopinthebag1 days ago|
parent|
prev|
[-]
The software with the worst security track record of all time is also written in C.
reply
upvoteby Pay081 days ago|
prev|
next
[-]
> "The alternative languages" - in this case you're talking about C, 99% of the time.

And that's part of the problem. There's no excuse beyond maybe platform support for starting a brand new project in C, when C++ exists.

reply
upvoteby slopinthebag1 days ago|
prev|
[-]
What an incredibly dishonest argument. Obviously "Well written C code" won't be riddled with CVE's by definition, the problem is that since programs written in C are littered with CVE's, it turns out it's really really difficult to write well written C, even for the best developers. With Rust, that entire class of problems is eliminated entirely.
reply