- untrustworthy inputs
- privilege
- unsafe language
- big, ball-of-mud codebase
We can do the first three, if the thing is small and simple.
Pretty much every OS kernel out there in wide deployment has all four of the above, though.
- untrustworthy inputs
- privilege
- unsafe language
- big, ball-of-mud codebase
We can do the first three, if the thing is small and simple.
Pretty much every OS kernel out there in wide deployment has all four of the above, though.