Readit News logoReadit News
Posted by u/Syonyk 2 years ago
With 0-days hitting Chrome, iOS, and many more this month, is no software safe?arstechnica.com/security/...
jamiek88 · 2 years ago
I’ve often thought that it is impossible to 100% secure any software that accepts user input.

I wonder if it can be proven?

Turskarama · 2 years ago

  def __main__():
    said = input("say something\r\n")
    print(said)
Now there may well be an exploit in the interpreter itself, but I'd say that's a very different thing.

poorlyknit · 2 years ago
You're in for a nasty surprise if (for whatever reason) this code is executed using Python 2:

https://docs.python.org/2/library/functions.html#input

    Equivalent to eval(raw_input(prompt)).

__s · 2 years ago
It can be proven false
jamiek88 · 2 years ago
Awesome! How?
GoblinSlayer · 2 years ago
There's no promise that legacy software is safe. There's only a promise it exists, works, gets the job done and releases updates.
dshpala · 2 years ago
... except for software written in Rust, obviously.
o1y32 · 2 years ago
... as if memory management issue is the only source of software vulnerability.
frankjr · 2 years ago
True but a reduction of 70% is nothing to sneeze at https://www.zdnet.com/article/microsoft-70-percent-of-all-se...