Per-language safety is mostly done via compiler checks etc. Most work, I agree, falls on the programmer.What do you consider "safer" then, Perl? CGI? In fact, what kind language is safer?
I don't understand your reasoning here.If you can write a virus in Pascal, then it's not a safe language and "is simply CRAP"?
True.Although I think "beign unsafe PHP" has nothing to do with it, the whole concept of adding "mods" and "hacks" to forum software is rather flawed. You can't easily update the forum software if many mods/hacks are used and it's also open it to vulnerabilities. This is the reason why on Afterwarp site we haven't done any "hacks" to the forum (and our front page is now emptyops
.
This is EXACTLY the crap I was talking aboutP.S. Followed by PGD hack event, I finally got myself motivated to upgrade forum software on afterwarp.com[size=9px][it's powered by vBulletin, but still...
Don't take it personaly but there are 2 and a half reasons for vulnerabilities and MORE importantly hackings.
1. Crappy programmers. See script kiddies section. Long story short, they don't check buffers, they don't check SQL injection etc.
2. Crappy admins. Mostly LAZY admins right? Again don't take it personaly, I only use given material
The-Half: The last part IS the language used. There are languages which more or less guide the programmer right way, give checks for code etc. There are also languages which never saw an integer overflow check etc.
Reply With Quote
Bookmarks