On 8 Mar 2002, Nathan J. Williams wrote:

: I'm always stunned that people can write what they consider to be
: security-important code in a language with as many safety pitfalls as
: C. While [Open]SSH has had a handful of logic vulnerabilites, there
: have also been quite a few bounds-check vulnerabilites of the kind
: that language designers have known how to avoid for nearly thirty
: years.

Bounds checking of any kind comes with a price, whether compile-time (in the
form of less code flexibility, such that you can't do the low level things
that C allows), or run-time (in the form of extra compiled code to do the
bounds checking).

-- 
-- Todd Vierling <tv@wasabisystems.com>  *  Wasabi & NetBSD:  Run with it.
-- CDs, Integration, Embedding, Support -- http://www.wasabisystems.com/