3. Blacklists Don't Work

Blacklists Don't Work

So, is not secure, if we remove the parts that make it secure. Nice. Let's remove it for windows and others too, please.

it is not part of the OS
can you understand it?
and it's not more secure, because it can be easily broken.
very easily.
it is a false sense of security, based on the assumption that users won't install anything not on the app store.
so can you explain me why I'm root on my phone?

If you change what are you measuring, then yes. Le'ts fix that and remove vbles.

who's changing what?

House Type A have a wood door, and type B, titanium with security locks (and let's assume the rest of the build fit the style). A is 10x more common than B.

except that this analogy does not apply to OSs
the post you're commenting is from 2007
TWOTHOUSANDANDSEVEN
windows changed a lot from then

And neither OSX or Linux?. So Windows is better designed?

I'm Italian, I'm not native english speaker, but even I understand that "not better" does not mean worse.
Do you?

Or is the point to say that are not significant differences between both? Because if that is the point, data disagree.

yeah, data from pleistocene probably did
data from the present, don't
http://thehackernews.com/2015/02/vulnerable-operating-system.html
(not defending windows here, just trying to prove you that there's no such thing as "secure consumer OS" yet)

But considering the Heartbleed bug and buffer-overflows exploits. What if the code is made with not possibility of buffer-overflows or unsafe-nulls?

all of the server that were affected were unixes of various forms, most of them are probably linux Windows was not affected

So why the more secure linux and OS X are vulnerable to buffer overflow in 2015?
Because they are designed better?
I'm sorry, I have nothing against you, but you cannot win an argument mistreating logic

If the Openssl sourcecode is made with more strick and/or safer programming techniques/tools, I think is not controversial to say that their security will increase.

then it won't be the most used in the world, because you move slower, you add less features in more time, meanwhile a less secure version of your library added the feature you are adding now 3 years ago and gained a larger user base
security is a trade off

The wrong assumptions is to say: Large numbers means Less security (or more successful attacks).

No
the wrong assumption is that security is free and will always win over unsecure but higly profitable

/r/programming Thread Parent Link - blog.codinghorror.com
Previous
Next

Recently removed from /r/programming

A Plea for Fairness for Non-profit Developers of Open Source Software TIL It takes developers 23 minutes of uninterrupted focus until they hit their “flow” state - the stage in which they do actual coding. Slack messages, fragmented meeting schedules and the need to be "available" online is hampering the possible productive gains “ChatGPT Will Replace Programmers Within 10 Years” - What do YOU, the programmer think? Docker is deleting Open Source organisations - what you need to know Disambiguating Arm, Arm ARM, Armv9, ARM9, ARM64, Aarch64, A64, A78, ... ASP.NET Core Blazor - A Complete Overview The Case for Functional CSS Why we ditched GraphQL for tRPC Single mom sues coding boot camp over job placement rates Good day. I'm writing a QUIC proxy in C. It's halfway done. It uses HTTP as protocol. Parser written, QUIC implemented through MS's library. Please star if you like. Thanks. Meta releases Sapling, a new way of using source control We’ve filed a law­suit chal­leng­ing GitHub Copi­lot, an AI prod­uct that relies on unprece­dented open-source soft­ware piracy. We Need To Talk About The Bad Sides of Go GitHub Copilot investigation Is a ‘software engineer’ an engineer? Alberta regulator says no, riling the province’s tech sector

More Random Comments

First timer questions... What would be a good Qbank that focuses critical thinking skills, strategies? Not just content. I have ADHD and epilepsy. Studying content isn’t helping with Qbank. Scores are low. U world seems good, but it’s more like content based. It doesn’t teach tips/strategies to answer the correct questions. Sociosexual Orientation Would you be interested in creating your own Lenormand cards? If so, what would it look like? Replaced the SSD with Kioxia - mainboard dead Great job on the performance. [m2f4a] I want to do an rp where my character either swaps or turns into a milf (details in comments) (discord only) gravity works differently on campus? Shadowdark ‘better’ than Old School Essentials? Husband set on naming our son Graham Cunningham Buy_Joint_Online Buy_Horse_Online Someone bought the Watts murder house in August of 2022 Sinnhaftigkeit Anleihen Jess Phillips reads out names of women killed by men in UK in the last year - Politics.co.uk