At 9:15 AM -0400 5/8/09, SC-L Reader Dave Aronson wrote: > ljknews <ljkn...@mac.com> wrote: >> At 12:47 PM -0500 5/7/09, Brad Andrews wrote: >>> Quoting ljknews <ljkn...@mac.com>: >>>> At 5:49 PM -0500 5/6/09, Brad Andrews wrote: >>>>> Try a few of the PC-Lint bugs, if you ever wrote C/C++ code. >>>>> They can be really hard to figure out, >>>> And yet people keep choosing those programming languages. >>> They offer quite a bit of power in exchange for the danger. >> I would be interested in hearing what they can do that cannot >> be done in Ada. > > It's rarely (I won't say never!) a question of what *can't* be done in > language X or Y. Usually, it's about what's *easier* to do in X or Y. > Sometimes the security tradeoff is worth taking the hard way, but > sometimes the choice is to the point of being at all practical or not.
Well the _easiest_ development comes from not worrying about security. So tell me what you think is easier in C/C++. -- Larry Kilgallen _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________
