At 11:45 PM +0100 11/2/07, Florian Weimer wrote: >> My limited exposure to Cobol makes me think it is as unlikely to have >> a buffer overflow as PL/I or Ada. > > Usually, Ada programmers switch off bounds checking before shipping > code. I don't know why Ada has such a reputation for robustness.
Can you provide a pointer to the study showing that ? Certainly none of the Ada I ship has bounds checking disabled. -- Larry Kilgallen _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________