|
|
|
|
|
|
by UncleMeat
1755 days ago
|
|
|
Then drop the analogy. If I install software that was written in C++ on a device I own and it processed untrusted content then I put myself as fairly major risk of all sorts of harm. There are only two resolutions for this problem: 1. No more memory-unsafe languages on security boundaries. 2. Extremely effective sandboxing and process isolation. #2 has proven very hard. But we know how to do #1. We just need to spend the effort. |
|
|