A place to discuss Joel on Software. Now closed.
This community works best when people use their real names. Please register for a free account.
Joel on Software
Business of Software
Design of Software (CLOSED)
.NET Questions (CLOSED)
Fog Creek Copilot
The Old Forum
Albert D. Kallal
I have heard and read claims that managed code is supposed to be "secure". Well, so suppose we rewrite TCP-IP stack, all the internet-facing drivers, the browser, the email client and anything else that is somehow dealing with stuff coming from the internet into managed code, like Java. Will this all of a sudden massively minimize the threat from worms and Chinese hackers? Otherwise, what exactly is the big deal about managed code and security?
what false statement did I make? I am asking questions here. And I ask a question - if we restrict the problem domain to ignore email clients that use databases or users who are KGB plants while we are at it, will managed code protect us from worms or not?
Note that I am not trying to sell you anything, convince you of anything or call you bad names. I am just trying to hold a productive discussion here and learn new info on this topic.
"what false statement did I make? I am asking questions here. And I ask a question - if we restrict the problem domain to ignore email clients that use databases or users who are KGB plants while we are at it, will managed code protect us from worms or not?"
As already pointed out by quant dev, the false statement is "A personal computer cannot be targeted with SQL injection."
No, as already pointed out by others. It might help -- just as locking one's door may help your home security -- but it is not a cure-all.
This topic is archived. No further replies will be accepted.Other recent topics
Powered by FogBugz