View Single Post
Old 01 August 2015, 13:35   #145
meynaf
son of 68k
meynaf's Avatar
 
Join Date: Nov 2007
Location: Lyon / France
Age: 45
Posts: 2,906
Quote:
Originally Posted by Mrs Beanbag View Post
i'm not talking about sites, i'm talking about code you explicitly run. if you didn't write it, you don't know how it works. you don't know what bugs it has. if it is network code it might have exploits. or maybe it just trashes your system when it breaks one day and you lose valuable data.
Code you explicitly run can always do wrong things, even if it has to call APIs for this. As I said many times, once the code executes it's too late.


Quote:
Originally Posted by Mrs Beanbag View Post
also memory protection can help against attacks, for instance making the stack non-executable helps against buffer overruns.
It can help, but a better way would be to stop misusing the stack when programming


Quote:
Originally Posted by Mrs Beanbag View Post
Because this is a terrible analogy.
How so ?
meynaf is offline  
 
Page generated in 0.03924 seconds with 10 queries