From: "Randy Brukardt" <randy@rrsoftware.com>
Subject: Re: Ada/GNAT/AWS-friendly web hosting
Date: Sat, 14 Sep 2024 01:38:16 -0500 [thread overview]
Message-ID: <vc3b0s$1b901$1@dont-email.me> (raw)
In-Reply-To: vbvqb7$esm6$11@dont-email.me
"Lawrence D'Oliveiro" <ldo@nz.invalid> wrote in message
news:vbvqb7$esm6$11@dont-email.me...
> On Thu, 12 Sep 2024 19:06:08 +0200, J-P. Rosen wrote:
>
>> But security breaches mainly use known bugs in Apache... If you write
>> your own server with AWS, the attacker knows nothing about the software
>> that answers!
>
> That's called "security through obscurity". Not recommended.
That's the wrong way to look at it. An Ada program is better thought of as
"security by simplicity and correctness", because you are running an Ada
that only does a few things (and which can be throughly tested, checked with
static analysis, and so on) rather than a general program that does a
zillion things (with many combinations that can't be tested).
The only place "obscurity" comes into it is that no one else is running the
exact same program as you. So attacks that depend on any sort of knowledge
of the program cannot succeed.
In any case, there is no such thing as "secure", there are only levels, and
for the sorts of non-critical stuff that we're doing, an Ada program is
certainly secure enough. I wouldn't try to run a storefront on it (although
that would be more because you'd have a hard time convincing your bank that
it is OK than any real problems), or anything that needs high-level
security.
Randy.
next prev parent reply other threads:[~2024-09-14 6:38 UTC|newest]
Thread overview: 27+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-09-12 14:25 Ada/GNAT/AWS-friendly web hosting Marius Alves
2024-09-12 14:48 ` J-P. Rosen
2024-09-12 14:54 ` DrPi
2024-09-12 17:06 ` J-P. Rosen
2024-09-12 17:16 ` Kevin Chadwick
2024-09-12 22:35 ` Lawrence D'Oliveiro
2024-09-13 6:46 ` J-P. Rosen
2024-09-14 6:38 ` Randy Brukardt [this message]
2024-09-12 22:40 ` Lawrence D'Oliveiro
2024-09-12 16:22 ` Jeffrey R.Carter
2024-09-12 22:29 ` Lawrence D'Oliveiro
2024-09-13 9:03 ` Jeffrey R.Carter
2024-09-12 18:48 ` Dmitry A. Kazakov
2024-09-13 13:15 ` Stéphane Rivière
2024-09-13 14:33 ` Björn Persson
2024-09-13 22:09 ` Lawrence D'Oliveiro
2024-09-14 7:01 ` Stéphane Rivière
2024-09-14 7:26 ` Lawrence D'Oliveiro
2024-09-14 8:51 ` Stéphane Rivière
2024-09-14 9:41 ` Lawrence D'Oliveiro
2024-09-14 10:29 ` Stéphane Rivière
2024-09-14 12:02 ` Kevin Chadwick
2024-09-14 13:00 ` Stéphane Rivière
2024-09-14 14:34 ` Jeffrey R.Carter
2024-09-14 16:11 ` Stéphane Rivière
2024-09-14 18:04 ` Jeffrey R.Carter
2024-09-13 17:36 ` Nioclás Pól Caileán de Ghloucester
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox