Hacker News new | ask | show | jobs
by pjmlp 1115 days ago
Thankfully the ongoing cybersecurity laws will change that mindset.
1 comments
tptacek 1115 days ago
No, I don't think they will.
link
pjmlp 1115 days ago
You will be surprised.

https://www.eff.org/deeplinks/2023/05/eus-proposed-cyber-res...

link
tptacek 1115 days ago
None of this is going to meaningfully impact C/C++ software. If it comes to pass at all, it'll be used at the margins to replace more C code with Rust.
link
pjmlp 1114 days ago
It only needs to have money attached to code fixes.

The problem with developers that don't do consulting is that they have no idea how each hour of their work relates to product development costs.

In Germany, services companies are already required to provide security fixes free of charge and warranties.

Someone has to pay those hours.

It is no accident that Google, Apple, Microsoft always mention increasing costs with bug fixes, when pushing for writing new code in safer languages.

link
uecker 1114 days ago
We will see. In a regulatory context, "the implementation is the spec" usually does not convince.
link