[XML-DEV Mailing List Archive Home] [By Thread] [By Date] [Recent Entries] [Reply To This Message] Re: Features of XML Languages that Increase Complexity?
On 4/14/13 12:08 PM, Costello, Roger L. wrote: > I reckon there's not much point in creating an awesome XML language > if its complexity exposes input-processing applications to widespread > vulnerabilities. It all depends on the context of that processing. The vulnerabilities you see in XML seem most likely to create denial-of-service possibilities, and there are many many cases where at most that creates a headache followed by a stern note not to do that again. If you are striving to create something hardened and operating in real time, you probably need either not to use XML or to build some slight intelligence and monitoring into your processing system. I don't think any of that work is unusual today. Letting such processing run fully automatic, especially in an environment you consider both critical and already compromised, seems like a poor software design decision. Thanks, -- Simon St.Laurent http://simonstl.com/
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] |
PURCHASE STYLUS STUDIO ONLINE TODAY!Purchasing Stylus Studio from our online shop is Easy, Secure and Value Priced! Download The World's Best XML IDE!Accelerate XML development with our award-winning XML IDE - Download a free trial today! Subscribe in XML format
|