Re: [Lit.] Buffer overruns
From: David Wagner (daw_at_taverner.cs.berkeley.edu)
Date: 01/22/05
- Next message: Douglas A. Gwyn: "Re: Guy Macon's adventures with ASCII character frequency"
- Previous message: David Wagner: "Re: [Lit.] Buffer overruns"
- In reply to: Trevor L. Jackson, III: "Re: [Lit.] Buffer overruns"
- Next in thread: Trevor L. Jackson, III: "Re: [Lit.] Buffer overruns"
- Reply: Trevor L. Jackson, III: "Re: [Lit.] Buffer overruns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 22 Jan 2005 22:44:01 +0000 (UTC)
Trevor L. Jackson, III wrote:
>The above assumes that reduction of incidence is orthogonal to the
>redution of consequences. That assumption is false.
It is? How so?
Automated bounds checking reduces consequences (it turns a "run amok"
total system compromise into a denial of service), but I think Doug Gwyn
is correct to say that it probably doesn't reduce incidence significantly
(certainly not enough).
- Next message: Douglas A. Gwyn: "Re: Guy Macon's adventures with ASCII character frequency"
- Previous message: David Wagner: "Re: [Lit.] Buffer overruns"
- In reply to: Trevor L. Jackson, III: "Re: [Lit.] Buffer overruns"
- Next in thread: Trevor L. Jackson, III: "Re: [Lit.] Buffer overruns"
- Reply: Trevor L. Jackson, III: "Re: [Lit.] Buffer overruns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Loading
