WhiteSource review of programming language security errors reveal which languages have the most security holes...

zdnet.com/article/which-are-the-most-insecure-languages/

>WhiteSource review of programming language security errors reveal which languages have the most security holes. The winner? C. But that's only the start of the story.
Should starting new projects in C be put on the same level as reckless driving?

Attached: language-security-bugs.jpg (620x417, 45K)

Other urls found in this thread:

cisecurity.org/advisory/multiple-vulnerabilities-in-php-could-allow-for-arbitrary-code-execution_2018-101/
security.berkeley.edu/news/multiple-vulnerabilities-php-could-allow-arbitrary-code-execution
twitter.com/SFWRedditVideos

>most systems level programs are made in C
>most vulnerabilities in C
weird

Attached: op is a fag.png (770x600, 155K)

They're increasingly being made in C++, including in embedded. 2 KB of RAM is laughable even in shit-budget chips nowadays.

Yes. They need to be adjusted for market share. And surprise surprise, C is still horrendous after that.

In other news: scientists find a positive correlation between sharp knife usage and accidental self-inflicted cuts. Less sharp knives lead to fewer incidents, but were less apt for more demanding tasks.

C is not "horrendous." There are just a lot of bad programmers in the world. As you can see, they still write terrible code in PHP, Java, JS, Ruby, and so forth.

Writing terrible code in PHP will not result in arbitrary code execution.

>eval
It actually will.

cisecurity.org/advisory/multiple-vulnerabilities-in-php-could-allow-for-arbitrary-code-execution_2018-101/

security.berkeley.edu/news/multiple-vulnerabilities-php-could-allow-arbitrary-code-execution

hehehe

Eval can be statically detected

This is stupid, most vulnerable programs written on C gets enough attention to deserve a CVE because it's critical infrastructure.
Webshit is full of vulnerabilities but nobody is going to fill a new CVE just because they found SQLi on some stupid website.

Not if it appears inside another eval, it can't

When was the last time someone said PHP was a good language again?

Attached: 2019-03-26-182317_723x141_scrot.png (723x141, 13K)

Surprisingly the most used ones.

Relevant.

>Should starting new projects in C be put on the same level as reckless driving?
Unless you have a firm grasp of computer engineering (not computer science), you shouldn't touch C.

Php is less annoying than js, python rust and their users all together.
I don't get it. Php was made as a c extension to generate html code and people used it wrong.
The same people who use today python js and the other shitty languages are the same kind of people who don't know which tool is best for each job.
Idiots forced php to become a completely standalone interpreted language and the developers did a fucking great job.
Faster than python, js and the rest shit.
Backwards compatible
And a fucking jit compiler in the recent version that pytards never even dreamt of.
What's next?
Whan was the last time someone said perl was good?

perl is good

Now, divide this by the number of users of each language

But can you use it to learn a little bit more about low-level programming? I'm starting EE at the uni and thought about reading K&R.

why do 13% of programmers commit over 50% of security flaws?

Python is beautiful. PHP is like HTML generated by a Perl developer after doing half a pound of cocaine and uploading it over a noisy modem with no error correction during a rainstorm.

>But can you use it to learn a little bit more about low-level programming?
Absolutely. It's worth learning if you're pursuing EE.

php JIT is faster than v8?

I'm almost positive it's a little longer than that, unless my threads have been done to me, their would have been 404ing especially fast.
Dude, it's a little long no ? It's not going to be a shithole like that angle I like Lisa Anns tits, or hate them.

Cum between her toes Smash a finger with hammer eat her pussy ine.php?term=Munging she fucks you in the ass. with a fkn sledgehammer bro.
Taylor teacher Post more user, this make me feel good ever.