Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
jcranberry
on Sept 6, 2019
|
parent
|
context
|
favorite
| on:
A Message about iOS Security
He's obviously talking about shipping only non-executable data.
693471
on Sept 6, 2019
|
next
[–]
Correct
stordoff
on Sept 6, 2019
|
prev
[–]
Still, is there a difference? If there is a bug in the parser, trip it and what was once non-executable might be executable.
allset_
on Sept 7, 2019
|
parent
[–]
Yes. Without executable client side code you can't do things like heap spraying.
saagarjha
on Sept 7, 2019
|
root
|
parent
[–]
Oh, you totally can. You just have to do it by tricking the parser into going it for you.
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
