Forgot your password?

Comment: All programs have bugs. (Score 1) 519

by Z00L00K (#46764503) Attached to: How Does Heartbleed Alter the 'Open Source Is Safer' Discussion?

It's just a question of how many of them that are discovered and how serious they are.

In this case it was a simple mistake, and had serious effects. In other cases the bugs may be caused not by simple mistakes but a very complex chain of mistakes and still just result in a small side-effect.

As I see it - the best way to avoid simple mistakes like missing to set a character limit is to restrict use of languages where this check isn't built into the language itself. C and C++ is good for some coding, but that code has to be strictly reviewed and cross-checked to ensure that it's secure. Other languages has a lower risk of simple mistakes because they don't allow the user to address data outside the boundaries of a declared variable, or they do extend the allocation of a variable when needed.

So looking into languages like Ada, Java, C# and Matlab/Simulink (or the clone Scilab) should be on the list of languages to consider. Even Basic would be worth to consider. Or if you want to be a bit more esoteric Erlang is not a bad choice.

Just be aware that almost every programming language has a basic platform written in C, so it's important to make sure that the platform doesn't have any problems.

"It's curtains for you, Mighty Mouse! This gun is so futuristic that even *I* don't know how it works!" -- from Ralph Bakshi's Mighty Mouse