From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me
X-Spam-Level: 
X-Spam-Status: No, score=-0.3 required=5.0 tests=BAYES_00,
	REPLYTO_WITHOUT_TO_CC autolearn=no autolearn_force=no version=3.4.4
X-Google-Thread: a07f3367d7,fc2b5af8782d4ca3
X-Google-Attributes: gida07f3367d7,public,usenet
X-Google-NewGroupId: yes
X-Google-Language: ENGLISH,ASCII-7-bit
X-Received: by 10.180.19.132 with SMTP id f4mr167365wie.2.1362103792366;
        Thu, 28 Feb 2013 18:09:52 -0800 (PST)
Path: 
 bp2ni65242wib.1!nntp.google.com!feeder1.cambriumusenet.nl!feed.tweaknews.nl!193.141.40.65.MISMATCH!npeer.de.kpn-eurorings.net!npeer-ng0.de.kpn-eurorings.net!border2.nntp.ams2.giganews.com!border1.nntp.ams2.giganews.com!border3.nntp.ams.giganews.com!border1.nntp.ams.giganews.com!nntp.giganews.com!news.meeh.mikalv.net!aioe.org!.POSTED!not-for-mail
From: "Dmitry A. Kazakov" <mailbox@dmitry-kazakov.de>
Newsgroups: comp.lang.ada
Subject: Re: can one make a static build Ada+GUI GTK application?
Date: Sat, 23 Feb 2013 14:01:49 +0100
Organization: cbb software GmbH
Message-ID: <1aqvkuqq5meed.18rycd2ci851n.dlg@40tude.net>
References: <kfr131$c5t$1@speranza.aioe.org> <kgadoj$ihm$1@online.de>
Reply-To: mailbox@dmitry-kazakov.de
NNTP-Posting-Host: TNGw0NoNrWqwYmfxAaSXHQ.user.speranza.aioe.org
Mime-Version: 1.0
X-Complaints-To: abuse@aioe.org
User-Agent: 40tude_Dialog/2.0.15.1
X-Notice: Filtered by postfilter v. 0.8.2
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Date: 2013-02-23T14:01:49+01:00
List-Id: <comp.lang.ada>

On Sat, 23 Feb 2013 13:47:12 +0100, Dirk Heinrichs wrote:

> Hmm, thought static linking was a thing of the past, because of it's 
> possible security problems.

GUI support is considered an integral part of the platform to be present
anyway.

> If one of your statically linked libs has a security flaw, it can't be 
> exchanged easily. You must relink and resend your binary to get the fixed 
> version to the receiver of your program.

...and conversely, if you link dynamically you can never assert your
application free of issues, because you are not in control of what it will
be linked to...
 
Security aspect is indeed involved considering general vulnerability of
GUI, when that is allowed to use the hardware, e.g. input devices at low
level.

Not that existing GUI frameworks pay much attention to that, but it could
definitely be an argument against static linking as well as against GUIs
allowed to perform sensitive operations in the user space.

-- 
Regards,
Dmitry A. Kazakov
http://www.dmitry-kazakov.de