This is the mail archive of the guile@sourceware.cygnus.com mailing list for the Guile project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]

Re: Scheme book recommendations

To: "Harvey J. Stein" <hjstein at bfr dot co dot il>
Subject: Re: Scheme book recommendations
From: "Peter C. Norton" <spacey at lenin dot nu>
Date: Wed, 7 Jun 2000 15:29:45 -0700
Cc: Mikael Djurfeldt <mdj at mdj dot nada dot kth dot se>, "Carl R. Witty" <cwitty at newtonlabs dot com>, guile at sourceware dot cygnus dot com, djurfeldt at nada dot kth dot se
References: <xy7vgzogugm.fsf@mdj.nada.kth.se> <Pine.GSO.4.21.0006061150110.3852-100000@vcn.bc.ca> <20000606133333.D10326@lenin.nu> <xy7r9aaikgl.fsf@mdj.nada.kth.se> <20000606143549.E10326@lenin.nu> <xy7em6aiiin.fsf@mdj.nada.kth.se> <xy7ya4h49j2.fsf@mdj.nada.kth.se> <v4jr9a9fclt.fsf@bogomips.newtonlabs.com> <xy7ya4h2mrq.fsf@mdj.nada.kth.se> <kiw4s759mqz.fsf@blinky.bloomberg.com>

On Wed, Jun 07, 2000 at 05:58:44PM -0400, Harvey J. Stein wrote:
> So you're only allowing everyone on the machine into your account
> instead of everyone on the internet?  Still not so cool.

I think the example is a cool idea.  Implementing security shouldn't be done
in place of the current example, it should be done as additional examples,
with explanations of why the additional features werea dded.  Otherwise
you've just written yet another scheme program that doesn't make headway
towards educating an ew user.  Maybe writing a program that does some kind
of trivial authentication for connected users would be good?  How about one
that does that in a chroot()'d jail?

> One of the points of guile as opposed to other languages is the safety
> of programming with it.  We shouldn't give examples that are
> fundamentally unsafe.

I don't think security is a big point in guile over perl or python.  At
least, it's probably a wash which one is the msot secure.

> A server example should be cognizant of the dangers of writing a
> server.  If we had a safe-top-repl, we could use that.  Barring that,
> one should make it a simple data server, such as maybe just returning
> the date & exiting, etc.

I agree that it should be more secure, but there should be more choices then
just "make it ultra secure or throw it away."

-Peter

-- 
The 5 year plan:
In five years we'll make up another plan.
Or just re-use this one.

References:
- Re: Scheme book recommendations
  - From: Mikael Djurfeldt
- Re: Scheme book recommendations
  - From: Shawn Betts
- Re: Scheme book recommendations
  - From: Peter C. Norton
- Re: Scheme book recommendations
  - From: Mikael Djurfeldt
- Re: Scheme book recommendations
  - From: Peter C. Norton
- Re: Scheme book recommendations
  - From: Mikael Djurfeldt
- Re: Scheme book recommendations
  - From: Mikael Djurfeldt
- Re: Scheme book recommendations
  - From: Carl R. Witty
- Re: Scheme book recommendations
  - From: Mikael Djurfeldt
- Re: Scheme book recommendations
  - From: Harvey J. Stein

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]