stack smashing Was: Re: Scanning Formats (TIFF vs. JPEG)
THX1138 at dakotacom.net
Sat Aug 19 17:36:00 CDT 2006
Josh Dersch wrote:
> You may be interested in the Singularity project (a research project at
> Microsoft, no less). It (gasp!) abstracts away pointers; the IL used
> for the entire OS (a subset of the CLR), the OS interface, et. al. is
> designed such that processes can be "proven" to be safe -- and all
> process protection is done _without_ the use of any CPU hardware.
This can only be possible if applications are *interpreted*
AND the user is denied *any* means of accessing the underlying
hardware (either by accidental or *intentional* means).
It's like claiming "run Java/Inferno/etc. on your machine and you'll
never have to worry about security issues" (unless, of course,
someone boots the machine to a "non-Java" state!)
More information about the cctalk