You are not logged in.
- Topics: Active | Unanswered
#1 2024-12-02 16:19:01
- akplusgold
- Member
- Registered: 2024-12-02
- Posts: 1
Secure programming language discussion
I'm planning to implement a major project in C / C++ / Rust / etc. haven't decided yet. Everything seems like it is coded in C, starting from Linux kernel, to compilers, even entire languages such as Python. I'm not totally convinced about why they chose C when there were other options. Or why no one chose to implement an alternative from scratch similar to C, is assembly really that difficult? 
Anyway, here's a list of questions for you to answer:
1) What languages do you recommend? List some pro / cons on why you think it is ideal from a security standpoint, and more importantly would be nice if you can leave some links such as tutorials, notable projects, etc. that can be good learning resources.
2) C++ seems like very optimized version of C with good language features that can make software development much easier. Let me know your thoughts on C vs C++, and why you would recommend one over the other for secure software development.
3) Compiler construction & research is a totally different territory of it's own that I'm not that heavily invested in yet, but you can share your thoughts on what you think about this. Which compilers do you prefer for coding in C / C++ / other & why?
** Bonus ** Mention some good security related software that you think has benefited our Linux community a lot, without which life would surely be very difficult.
Hope the responses and discussion will be very helpful to the community! Have a good day :]
Offline
#2 2024-12-02 19:08:22
- twelveeighty
- Member
- From: Alberta, Canada
- Registered: 2011-09-04
- Posts: 1,144
Re: Secure programming language discussion
These types of discussions are not "helpful to the community"; they tend to never lead to a logical conclusion, and therefore typically end up in the TGN forum as they quickly degrade into a "vi vs emacs" type bikeshedding.
You're asking about tools without describing what you're building. "Secure" isn't enough of a description on what exactly you're building. All applications aim to be "secure". With proper design and competent programming, you can build a secure application in pretty much any language.
I hope you weren't serious with your "assembly" comment, otherwise you're just trolling.
Calling C++ "a very optimized version of C" is also a statement that can be considered trolling. C++ has been around for over 25 years, C over 40 years, there is ample information you can research yourself on pros and cons of each on the Internet.
Offline
#3 2024-12-02 19:17:15
- Head_on_a_Stick
- Member
- From: The Wirral
- Registered: 2014-02-20
- Posts: 8,345
- Website
Re: Secure programming language discussion
Let me know your thoughts on C vs C++
http://harmful.cat-v.org/software/c++/
you're just trolling
Quoted for truth.
Para todos todo, para nosotros nada
Offline
#4 Today 09:12:38
- ReDress
- Member
- Registered: 2024-11-30
- Posts: 34
Re: Secure programming language discussion
Most security *bugs* issues usually have something to do with memory corruption, one way or the other.
Now, it is quite possible to exploit software without having discovered a bug yourself because people routinely fail to update their software. Secure software is much more than just bugs 
That said, some programming languages make it harder to make memory-related programming errors. Their designs are probably based on what problems have been observed with other languages.
Still, even with a very modern programming language, technical bugs, which have nothing to do with the language can still occur.
Offline