VMs

Posted on August 10, 2006

Somebody found that due to the bug in the URL rewrite code in Ruby on rails, it is possible to evaluate 3rd party code on server. So soon script-kiddies will start erasing hard-drives and installing root-kits. But there is nothing special about Ruby-on-rails, many popular applications written in different languages had similar problems. It is more a deficiency of a programming language itself.

I think, it is important to learn from more secure languages that do not allows such things to happen. And develop new programming languages with that in mind. It just does not make sense to allow such accidents.

But it takes a long time to develop and promote a programming language. So in the near future, when new processors will have a virtualization technology built-in (basically this will allow to run several operating systems concurently with very small overhead), I think, it would be wise to run a dedicated OS per network application.

Filed Under Uncategorized |

Leave a Comment

If you would like to make a comment, please fill out the form below.

Name

Email

Website

Comments

For spam detection purposes, please copy the number 3740 to the field below:

© Copyright 0xDEADBEEFCAFE • Powered by Wordpress • Design by Sebastin.

free web hit counter