LisPi · @lispi314
396 followers · 6857 posts · Server mastodon.top@wrv Based. I'm once again vindicated for deriding the writing of complex codecs in unsafe #C instead of something sane like #Ada or #CommonLisp
#c #ada #commonlisp #security #languagebasedsecurity
LisPi · @lispi314
341 followers · 5060 posts · Server mastodon.top
@GossiTheDog @fellows lol, yet another #RCE that'd have been prevented by the most basic of #LanguageBasedSecurity.
Microsoft knows this too (https://en.wikipedia.org/wiki/Singularity_(operating_system)), why do they keep ignoring their own knowledge?
#security #rce #languagebasedsecurity
LisPi · @lispi314
331 followers · 4935 posts · Server mastodon.top#FStar is pretty cool and doesn't afraid of anything.
It seems not to get mentioned much on the #Fediverse
#Security #LanguageBasedSecurity #FormalVerification #Proof #Programming
#fstar #fediverse #security #languagebasedsecurity #formalverification #proof #programming
LisPi · @lispi314
331 followers · 4935 posts · Server mastodon.top
@rysiek Ah so it is. https://github.com/XKCP/XKCP
Perhaps rewriting that in #Ada or #Rust might be advisable (or maybe #FStar)?
(Most probably Ada if it needs fancy time guarantees.)
#fstar #ada #rust #languagebasedsecurity #security
LisPi · @lispi314
331 followers · 4935 posts · Server mastodon.top@rysiek So... is this yet another case of #C implementations leading to consequences that'd be easily prevented by use of #LanguageBasedSecurity?
From the sound of it, it's a vulnerable library being integrated.
Nothing implemented in pure Python or PHP should even be able to segfault.
LisPi · @lispi314
295 followers · 4339 posts · Server mastodon.top@nixfreak @theruran I miss the aborted future where #LispMachines & #Smalltalk systems are the norm.
It's a much nicer timeline.
Still, maybe this will finally reverse steam on the proliferation of unsafe languages? The disastrous disregard for #LanguageBasedSecurity and the inevitable #security consequences finally having reached the point where they cannot be ignored.
#languagebasedsecurity #security #lispmachines #smalltalk #lisp
LisPi · @lispi314
286 followers · 4243 posts · Server mastodon.topWell shit, I even called it: https://mastodon.top/@lispi314/108309285587959330
https://infosec.exchange/@briankrebs/109940001072018363
#Decoder #Codec #MediaCodec #LanguageBasedSecurity #Security #C
#decoder #codec #mediacodec #languagebasedsecurity #security #c
LisPi · @lispi314
286 followers · 4243 posts · Server mastodon.topWell shit, I even called it: https://mastodon.top/@lispi314/108309285587959330
https://mastodon.top/@briankrebs@infosec.exchange/109940001186253861
#Decoder #Codec #MediaCodec #LanguageBasedSecurity #Security #C
#decoder #codec #mediacodec #languagebasedsecurity #security #c
LisPi · @lispi314
286 followers · 4243 posts · Server mastodon.top@briankrebs And yet again I'm vindicated in thinking that implementing #media codecs in #unsafe languages is absolutely idiotic and insecure.
#Decoder #Codec #MediaCodec #LanguageBasedSecurity #Security
#media #decoder #codec #mediacodec #languagebasedsecurity #security #unsafe