From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: 103376,bc1361a952ec75ca X-Google-Attributes: gid103376,public X-Google-ArrivalTime: 2001-08-01 09:21:49 PST Path: archiver1.google.com!newsfeed.google.com!newsfeed.stanford.edu!news.tele.dk!130.133.1.3!fu-berlin.de!uni-berlin.de!62.46.205.90!not-for-mail From: Karl Heinz Buchegger Newsgroups: comp.lang.ada Subject: Re: How Ada could have prevented the Red Code distributed denial of service attack. Date: Wed, 01 Aug 2001 18:24:51 +0200 Organization: GASCAD Message-ID: <3B682D53.5F32CDD1@gascad.at> References: <3B6555ED.9B0B0420@sneakemail.com> <87n15lxzzv.fsf@deneb.enyo.de> <3B672322.B5EA1B66@home.com> NNTP-Posting-Host: 62.46.205.90 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Trace: fu-berlin.de 996682907 3668192 62.46.205.90 (16 [95537]) X-Mailer: Mozilla 4.5 [en] (WinNT; I) X-Accept-Language: en Xref: archiver1.google.com comp.lang.ada:10957 Date: 2001-08-01T18:24:51+02:00 List-Id: Preben Randhol wrote: > > On Wed, 1 Aug 2001 09:09:12 -0400, Mike Smith wrote: > > > The buffer overflow occurs because of a bug in the *Microsoft* C library. > > This is not endemic to C or C++ in general. > > The point is that if you look at the security bugs in Linux or Microsoft > software they consists mainly of buffer overflow bugs. This comes from > using languages such as C and C++ which allow buffer overflow due to > their design. This comes from having programmers, which are unaware of what they are doing. > Other languages eliminate this problem to a large extent. Better education and taking care of that problems helps a lot. No need to change tools if you know how to work with them. -- Karl Heinz Buchegger kbuchegg@gascad.at