Dustin Puryear wrote: > Edmund Cramp wrote: > >> Dustin Puryear wrote: >> >>> Scott Harney wrote: >>> >>>> Compilers can check for this at compile time too. >>> >>> >>> Yeah, but exploits that use code on the stack are runtime issues. >> >> >> More grist for the Microsoft vs Linux mill I think. You'd better >> hold this meeting when I'm in town. > > > Linux and Windows don't differ in this regard.
True, but as someone pointed out recently (in The Register maybe?), Windows tends to take the attitude of "security is there to *prevent* access to resources" while other systems (my experience is RSX/VAX but I believe UNIX does this too) are written with the attitude that "security is there to *grant* access to resources". This sounds like a small point but explains why Windows tends to fail with its underwear off, rather than on. Edmund Cramp -- Complex problems have simple, easy-to-understand wrong answers.
