From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Thread: 103376,21960280f1d61e84 X-Google-Attributes: gid103376,public X-Google-Language: ENGLISH,ASCII-7-bit Path: g2news2.google.com!news3.google.com!news4.google.com!border1.nntp.dca.giganews.com!nntp.giganews.com!wns13feed!worldnet.att.net!attbi_s72.POSTED!53ab2750!not-for-mail From: "Jeffrey R. Carter" User-Agent: Thunderbird 1.5.0.8 (Windows/20061025) MIME-Version: 1.0 Newsgroups: comp.lang.ada Subject: Re: How come Ada isn't more popular? References: <1169531612.200010.153120@38g2000cwa.googlegroups.com> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Message-ID: NNTP-Posting-Host: 12.201.97.213 X-Complaints-To: abuse@mchsi.com X-Trace: attbi_s72 1169841935 12.201.97.213 (Fri, 26 Jan 2007 20:05:35 GMT) NNTP-Posting-Date: Fri, 26 Jan 2007 20:05:35 GMT Organization: AT&T ASP.att.net Date: Fri, 26 Jan 2007 20:05:35 GMT Xref: g2news2.google.com comp.lang.ada:8611 Date: 2007-01-26T20:05:35+00:00 List-Id: Maciej Sobczak wrote: > > Just changing the implementation language from C to whatever else (Ada > including) can rule out only one (buffer overflows) of the top 10 > security flaws - and even that not always (especially when binding to > some C code is used, where the buffer overflow can happen on the > language border). I recall reading that buffer overflows account for about 50% of actually exploited vulnerabilities in networking SW. I'm not sure if that's still true when one considers "web applications". Also, it documents exploitation, not existence. -- Jeff Carter "People called Romanes, they go the house?" Monty Python's Life of Brian 79