From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM autolearn=ham autolearn_force=no version=3.4.4 X-Google-Thread: a07f3367d7,bbe592428babd509 X-Google-Attributes: gida07f3367d7,public,usenet X-Google-NewGroupId: yes X-Google-Language: ENGLISH,ASCII-7-bit Path: g2news2.google.com!postnews.google.com!k41g2000yqf.googlegroups.com!not-for-mail From: Gautier write-only Newsgroups: comp.lang.ada Subject: Re: Web browser in Ada Date: Fri, 23 Apr 2010 14:33:40 -0700 (PDT) Organization: http://groups.google.com Message-ID: References: <02c2bf63-260d-4acc-bd58-c8fb8a591ec3@b6g2000yqi.googlegroups.com> <0bf9425c-32a1-4b93-b938-ae4a4e24a761@c21g2000yqk.googlegroups.com> NNTP-Posting-Host: 62.203.180.74 Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 X-Trace: posting.google.com 1272058420 15735 127.0.0.1 (23 Apr 2010 21:33:40 GMT) X-Complaints-To: groups-abuse@google.com NNTP-Posting-Date: Fri, 23 Apr 2010 21:33:40 +0000 (UTC) Complaints-To: groups-abuse@google.com Injection-Info: k41g2000yqf.googlegroups.com; posting-host=62.203.180.74; posting-account=gRqrnQkAAAAC_02ynnhqGk1VRQlve6ZG User-Agent: G2/1.0 X-HTTP-UserAgent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.9) Gecko/20100317 SeaMonkey/2.0.4,gzip(gfe) Xref: g2news2.google.com comp.lang.ada:11144 Date: 2010-04-23T14:33:40-07:00 List-Id: > Could you refer to an existing browser vulnerability that is related > to the core browser engine and that would be avoided by choosing > another language? > (I'm genuinely interested) It is a very good question, that should be solved before jumping into such a time-consuming project :-). My impression is that a good part of vulnerabilities are indeed within plug-ins, another good part is between the browser and a plug-in (typically, browser X need to be patched but not the others nor the plug-in), and the third part, important as well, is about CSS, JavaScript, image storage or decoding, XML, HTML parsing and other core parts of browsers. I had a glimpse on: http://www.mozilla.org/security/known-vulnerabilities/ and a randomly with http://www.google.com/search?q=browser+security+update Hopefully someone more knowledgeable than me can answer your question, or give percentages to the parts above... G.