cmeerw

joined 2 years ago
sorted by: new top controversial old
10
OpenBSD 7.7 Released (www.openbsd.org)
 

Released Apr 28, 2025. (58th OpenBSD release)

12
Make Your Own Internet Presence with NetBSD and a 1 euro VPS – Part 1: Your Blog (it-notes.dragas.net)
5
Dipping my toes in OpenBSD, in Amsterdam - ewintr.nl (ewintr.nl)
11
How to Secure Existing C and C++ Software without Memory Safety (arxiv.org)
 

The most important security benefit of software memory safety is easy to state: for C and C++ software, attackers can exploit most bugs and vulnerabilities to gain full, unfettered control of software behavior, whereas this is not true for most bugs in memory-safe software—just a few

9
Crate-training Tiamat, un-calling Cthulhu:Taming the UB monsters in C++ (herbsutter.com)
 

This is a status update on improvements currently in progress for hardening and securing our C++ software.

5
OSDay 2025 - Why Choose to Use the BSDs in 2025 (it-notes.dragas.net)
9
The Defer Technical Specification: It Is Time (thephd.dev)
 

For the big brain 10,000 meter view, defer ⸺ and the forthcoming TS 25755 ⸺ is a general-purpose block/scope-based “undo” mechanism that allows you to ensure that no matter what happens a set of behavior (statements) are run.

37
C++ creator calls for action to address 'serious attacks' (www.theregister.com)
 

Bjarne Stroustrup, creator of C++, has issued a call for the C++ community to defend the programming language, which has been shunned by cybersecurity agencies and technical experts in recent years for its memory safety shortcomings.

9
Emacs 30.1 released (lists.gnu.org)
 

Emacs 30.1 includes security fixes for a shell injection vulnerability in man.el (CVE-2025-1244), and for arbitrary code execution with flymake (CVE-2024-53920). We recommend upgrading immediately.

4
Time to make C the COBOL of this century (The Register - Opinion) (www.theregister.com)
 

There's no perhaps about the FBI and CISA getting snippy at buffer overflows. These people worry about exploits that threaten car-crash incidents in enterprise IT, and they've seen enough to get angry. It's not that making mistakes is a crime when writing code. No human endeavor worth doing is without error. It's more that this class of bug is avoidable, and has been for decades, yet it pours out of big tech like woodworm from a church pew. Enough already, they say. They are right.

8
Trip report: February 2025 ISO C++ standards meeting (Hagenberg, Austria) (herbsutter.com)
 

On Saturday, the ISO C++ committee completed the second-last design meeting of C++26, held in Hagenberg, Austria. There is just one meeting left before the C++26 feature set is finalized in June 2025 and draft C++26 is sent out for its international comment ballot (aka “Committee Draft” or “CD”), and C++26 is on track to be technically finalized two more meetings after that in early 2026.

7
21st Century C++ – Communications of the ACM (cacm.acm.org)
 

It is now 45+ years since C++ was first conceived. As planned, it evolved to meet challenges, but many developers use C++ as if it was still the previous millennium. This is suboptimal from the perspective of ease of expressing ideas, performance, reliability, and maintainability. Here, I present the key concepts on which performant, type safe, and flexible C++ software can be built: resource management, life-time management, error-handling, modularity, and generic programming. At the end, I present ways to ensure that code is contemporary, rather than relying on outdated, unsafe, and hard-to-maintain techniques: guidelines and profiles.

view more: ‹ prev next ›