undefined | Better HN

0 pointslaumars5y ago0 comments

Half those applications are going to have other classes of new bugs simply because it’s new code and they’ve had less people audit the code. Plus some of those original tools were already written in safe languages like Haskell.

0 comments

7 comments · 4 top-level

lmm5y ago· 3 in thread

> Half those applications are going to have other classes of new bugs simply because it’s new code and they’ve had less people audit the code.

True. But most other classes of bug are not security bugs by default in the way that memory safety bugs are.

laumarsOP5y ago

That’s not true at all. 2 of the 3 biggest security vulnerabilities I’ve had to deal with in my career were completely unrelated and wouldn’t have been prevented had software been written in Rust instead.

Also half the software mentioned in that gist should never be used in security-focused applications anyway (if your depending on ‘cat’ or ‘awk’ to be bug free for your application to be hardened then you’re already doing it wrong)

lmm5y ago

> 2 of the 3 biggest security vulnerabilities I’ve had to deal with in my career were completely unrelated and wouldn’t have been prevented had software been written in Rust instead.

The last study I saw was that 52% of security vulnerabilities were still basic memory safety vulnerabilities. Memory safety isn't the only thing, but it's still the biggest thing.

> (if your depending on ‘cat’ or ‘awk’ to be bug free for your application to be hardened then you’re already doing it wrong)

People run cat or awk on log files (where an attacker could easily craft particular data patterns) all the time. Maybe they shouldn't, but they do.

1 more reply

bluGill5y ago

I use cat and awk in my build system. I can imagine bugs in either that I wouldn't notice in general that would compromise my application. They are off the wall enough that I don't think they have ever happened, but my application is an embedded system that has the ability to kill people so I'm a little paranoid. (not so much that I don't use awk in my build system where it is a useful tool)

1 more reply

pdimitar5y ago

I too am not convinced that Haskell tools have to be replaced by Rust ones. In my eyes Rust's main applicability in this situation would be to replace C/C++ tools.

As for other kinds of bugs, yeah, that's inevitable, but I still prefer to have the memory safety bugs eliminated from the get go so I'd still say it's a worthy sacrifice to walk the road to safe tools one more time just for the memory safety.

So yeah, no need to rewrite tools in already memory safe languages but when it comes to C/C++ tools then yes, we need to rewrite them.

yitchelle5y ago

I cannot upvote this comment enough. This list of tools are tried and trusted, and have under went 1000s of hours of usage.

Sure that given enough resources, motivation and time, Anything is possible. But new code means bugs and uncertainty.

Some of the tools listed are not small if a one for one replacement is the target. Vim is listed??

How long before these tools are considered as matured and ready for production?

pizza2345y ago

To note that the parent post was not referring to rewrites, but to the language a package was written in first place, which is an important distinction.

j / k navigate · click thread line to collapse

0 comments

7 comments · 4 top-level

lmm5y ago· 3 in thread

> Half those applications are going to have other classes of new bugs simply because it’s new code and they’ve had less people audit the code.

True. But most other classes of bug are not security bugs by default in the way that memory safety bugs are.

laumarsOP5y ago

lmm5y ago

> 2 of the 3 biggest security vulnerabilities I’ve had to deal with in my career were completely unrelated and wouldn’t have been prevented had software been written in Rust instead.

The last study I saw was that 52% of security vulnerabilities were still basic memory safety vulnerabilities. Memory safety isn't the only thing, but it's still the biggest thing.

> (if your depending on ‘cat’ or ‘awk’ to be bug free for your application to be hardened then you’re already doing it wrong)

People run cat or awk on log files (where an attacker could easily craft particular data patterns) all the time. Maybe they shouldn't, but they do.

1 more reply

bluGill5y ago

1 more reply

pdimitar5y ago

I too am not convinced that Haskell tools have to be replaced by Rust ones. In my eyes Rust's main applicability in this situation would be to replace C/C++ tools.

So yeah, no need to rewrite tools in already memory safe languages but when it comes to C/C++ tools then yes, we need to rewrite them.

yitchelle5y ago

I cannot upvote this comment enough. This list of tools are tried and trusted, and have under went 1000s of hours of usage.

Sure that given enough resources, motivation and time, Anything is possible. But new code means bugs and uncertainty.

Some of the tools listed are not small if a one for one replacement is the target. Vim is listed??

How long before these tools are considered as matured and ready for production?

pizza2345y ago

To note that the parent post was not referring to rewrites, but to the language a package was written in first place, which is an important distinction.

j / k navigate · click thread line to collapse