Francis Irving · Jan 19, 2015 · 10:23 AM UTC

Francis Irving @frabcus

19 Jan 2015

Seriously, Heartbleed was entirely caused by pointers being dangerous. This is not hard - we should get rid of general purpose pointers.

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 · Jan 19, 2015 · 10:24 AM UTC

19 Jan 2015

@frabcus The danger in languages like C come from their power. If you remove the danger you remove the power. Sometimes power is needed.

Francis Irving · Jan 19, 2015 · 10:32 AM UTC

Francis Irving @frabcus

19 Jan 2015

@dsilverstone that's the point though, pretty well all uses of C/C++ don't need that power. e.g. Gecko didn't, c.f. Servo. What uses do?

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 · Jan 19, 2015 · 10:37 AM UTC

19 Jan 2015

@frabcus Also, you're still assuming that the compiler is good and that the author understands the chip in question.

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 · Jan 19, 2015 · 10:38 AM UTC

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 · Jan 19, 2015 · 10:38 AM UTC

19 Jan 2015

@frabcus Yes it's a smaller surface, but all that means is that all the attacks are focussed there. There's money in attacks :-(

Jan 19, 2015 · 10:38 AM UTC

Francis Irving · Jan 19, 2015 · 11:03 AM UTC

Francis Irving @frabcus

19 Jan 2015

@dsilverstone thanks for all those! am taking notes, and am thinking of doing a blog post with them all in

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 · Jan 19, 2015 · 11:35 AM UTC

19 Jan 2015

@frabcus A full and frank discussion of these topics is an opportunity for much blogging :-)