Pantek Library
Hosting Provided By
CybrHost
High Speed Hosting
Mailing Lists: audit-dead > auditors > 97 > 020056.html (Request Expert audit-dead Support)

Re: Re : Bounds-checking gcc ..

From: Matt Dillon <dillon(at)best.net>
Date: Tue Feb 18 1997 - 16:47:06 EST


:If you can come up with a good, clear design for this firewall code,

    Well.. no duh! But if you insist on a perfect solution, the likely     outcome will be NO solution at all. Complete solutions are possible     only if you do something, say, like redesign the whole damn operating     system from scratch. Having a partial solution is better then nothing,     especially if it's scaleable (i.e. you start tackling the various     system/library resources one at a time).

    This is getting off topic.. I am not suggesting that we do any of this     now, but if you want to keep the system 'clean' in future releases,     a 'default more secure' rather then a 'default less secure' paradigm     is an absolute necessity. We will never be able to guarentee the     system against bozo programmers, but we can do a whole lot better     then what we have now.  

                                        -Matt

    Matthew Dillon Engineering, BEST Internet Communications, Inc.

                    <dillon@best.net>
    [always include a portion of the original email in any response!] Received on Tue Feb 18 13:48:27 1997

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 12:41:02 EDT

Contact Us  Legal Notices  Order Services Online 
Pantek Home  Privacy Policy  IT news  Site Map  Pantek Library