Typical security issues in C++: why the GC isn't your enemy
areYouSureAboutThat
areYouSureAboutThat at gmail.com
Thu Dec 15 09:41:08 UTC 2022
On Thursday, 15 December 2022 at 01:12:28 UTC, norm wrote:
>
> Most security hacks (that I know of) are not due to C array
> overruns. Those headliners that usually come from C/C++ code
> written >10yrs ago. The majority of security breaches are due
> to human activities, people clicking on fake email links,
> sharing passwords, leaving computers unlocked, incorrect server
> and database configuration etc. Rust and @safe will not solve
> these real world problems.
you forget to mention.. 'and programmers blindly using
third-party packages'
'An Empirical Study on Production Dependencies in NPM' - 2022
"The problem is that developers struggle to identify what
vulnerabilities may affect their software application.."
https://arxiv.org/pdf/2207.14711.pdf
More information about the Digitalmars-d
mailing list