English version
Accueil     À propos     Téléchargement     Ressources     Contactez-nous    

Ce site est rarement mis à jour. Pour les informations les plus récentes, rendez-vous sur le nouveau site OCaml à l'adresse ocaml.org.

Browse thread
[Caml-list] How to secure an OCaml server
[ Home ] [ Index: by date | by threads ]
[ Search: ]

[ Message by date: previous | next ] [ Message in thread: previous | next ] [ Thread: previous | next ]
Date: 2004-02-28 (20:29)
From: Richard Jones <rich@a...>
Subject: Re: [Caml-list] How to secure an OCaml server
On Sat, Feb 28, 2004 at 09:28:07PM +0100, Thomas Fischbacher wrote:
> On Sat, 28 Feb 2004, Richard Jones wrote:
> > This is a new type of vulnerability discovered fairly recently. 
> I am not sure about this, as I can hardly imagine that some clever souls 
> may not have thought of such problems much earlier. I suppose, the big 
> problem is the seductive easiness of hashes and their popularization by 
> perl...

Of course _I_ always recommend using assoc lists instead of Hashtbl
with OCaml nowadays.  This has the feature that it's _always_
O(big something) so DoS attacks are never a problem :-)


Richard Jones. http://www.annexia.org/ http://www.j-london.com/
Merjis Ltd. http://www.merjis.com/ - improving website return on investment
'There is a joke about American engineers and French engineers. The
American team brings a prototype to the French team. The French team's
response is: "Well, it works fine in practice; but how will it hold up
in theory?"'

To unsubscribe, mail caml-list-request@inria.fr Archives: http://caml.inria.fr
Bug reports: http://caml.inria.fr/bin/caml-bugs FAQ: http://caml.inria.fr/FAQ/
Beginner's list: http://groups.yahoo.com/group/ocaml_beginners