I'm not sure it's that cut and dry. For one thing, PHP itself has vulnerabilitie... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		fusiongyro on Sept 18, 2013 \| parent \| context \| favorite \| on: Web development in C: Crazy? I'm not sure it's that cut and dry. For one thing, PHP itself has vulnerabilities, as do its flagship apps. These vulnerabilities are easy to scan for, because the default configuration advertises that it is there and what version it is. If you're worried about some kid running scripts or idly scanning, you're probably in better shape with a custom C program than with a widely-used PHP program, even though the custom C program is likely to be more fragile and crumple more easily under actual expert attention.

AdrianRossouw on Sept 18, 2013 [–]

are you actually arguing for security by obscurity?

fusiongyro on Sept 18, 2013 | [–]

No, I'm saying something more subtle than that, which is why I used four sentences instead of three words.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact