From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: 103376,28cd155693714664 X-Google-Attributes: gid103376,public X-Google-ArrivalTime: 2002-06-17 00:04:41 PST Path: archiver1.google.com!postnews1.google.com!not-for-mail From: mjsilva697@earthlink.net (Mike Silva) Newsgroups: comp.lang.ada Subject: Re: Faulty languages and Liability Date: 17 Jun 2002 00:04:40 -0700 Organization: http://groups.google.com/ Message-ID: <27085883.0206162304.7f9b2d00@posting.google.com> References: <3D0C7C0B.5000707@mail.com> <27085883.0206161028.276e62e4@posting.google.com> <3D0D31D2.2000104@mail.com> NNTP-Posting-Host: 209.179.250.62 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit X-Trace: posting.google.com 1024297480 32235 127.0.0.1 (17 Jun 2002 07:04:40 GMT) X-Complaints-To: groups-abuse@google.com NNTP-Posting-Date: 17 Jun 2002 07:04:40 GMT Xref: archiver1.google.com comp.lang.ada:26122 Date: 2002-06-17T07:04:40+00:00 List-Id: Hyman Rosen wrote in message news:<3D0D31D2.2000104@mail.com>... > Mike Silva wrote: > > A better analogy is when your car catches fire while driving down the road. > > But viruses which take advantage of buffer overflows and such are > like spreading oil on the road to make cars crash. The manufacturer > can very easily argue that the program works fine in normal use, and > that intricately formed attack vectors are not part of that. The story, and "The Story", are about much more than buffer overflows -- it's about faulty software in general. If there were tire technology that could allow safe driving in oil slicks, and oil slicks were common on the road, then yes, using 30-year-old technology that couldn't handle the problem sounds like gross negligence to me. > > It has already been mentioned that there are many other points of > vulnerability than buffer overruns. There is cross-scripting, /tmp > race conditions, symbolic link race conditions, and a host of other > stuff, none of which will be *automatically* caught be using Ada. Automobiles may crash if somebody throws a brick through the window, or if they hit a patch of ice. Every auto is susceptible to such problems, because the technology does not exist or is not affordable to prevent them. However, when cars burn up because they use faulty fuel hose when there exists a correct fuel hose then that's quite possibly negligence. > > So the argument boils down to the usual about Ada being better, > but that doesn't really bring product liability into it. > > >>If I was sued becuase I didn't use Ada, > > Nobody is proposing that. > > Sure they are, when an Ada advocate starts suggesting product liability > lawsuits. It's not about using Ada, it's about -not- using the most faulty tools in the toolbox, which are known by one and all to be faulty tools relative to other commonly available tools. > > > What, exactly, were the "results of using Ada" on the Ariane 5? I > > know you don't like it when people resort to stupid anti-C++ comments > > to make a point, so don't resort to stupid anti-Ada comments to make > > your point, if you want to be taken seriously on cla. > > I wouldn't resort to stupid anti-Ada comments on c.l.a, but if someone > was trying to use lawsuits to force me to abandon the one true way and > start using Ada instead... It's not about Ada, it's about using reasonable, well-known tools and techniques that are better than those being used. > you can be sure that I would use every method > at my disposal to fight that, including launching unfair attacks against > Ada. I would resort to stupid anti-Ada comments with the jury. > > The point of Ariane 5 is that the rocket blew up even though the software > was written in Ada. This very much weakens the arguments that could be > made that one should have used Ada instead of [lang], since there is a > spectacular failure which demonstrates that writing in Ada is no panacea. > So we just get back to the usual arguments about why one language is > better than another, but there isn't much there for liability suits to > claim that one should have used a different language. That's a straw man. Nobody ever, ever claims that a project using software written in "X" can never, ever have a failure traceable to proper or improper operation of the "X" software, anymore than building aircraft with aerospace-rated bolts will guarantee that a plane will never have a structural failure. The problem today is that far too many software houses are putting cheap hardware store bolts in their planes and saying that they can't do any better. It's not about perfect software, it's about negligence in knowingly using inadequate tools and techniques when better ones have existed for decades. Mike