Re: Public disclosure of discovered vulnerabilities

On Mon, 06 Jun 2005 21:38:22 -0700, Paul Rubin wrote:

> "Douglas A. Gwyn" <DAGwyn@null.net> writes:
>> Since that isn't what I was saying at all, apparently you did *not*
>> understand my point. Let me try once more: Since there is ample
>> evidence that "safe" programs can be (routinely) produced *even when
>> the PL is completely "unsafe"*,
>
> Not this again. That evidence is a bunch of programs you claim to
> have written but are unable to show anyone, or even expose to internet
> attack without showing the code. That's pretty unpersuasive.

The entire code-base of OpenBSD?

Qmail?

All sorts of embedded stuff that you probably can't get the source to, but
which observably never breaks anyway?

-- 
Andrew