Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
jcranberry
on Sept 6, 2019
|
parent
|
context
|
favorite
| on:
A Message about iOS Security
He's obviously talking about shipping only non-executable data.
693471
on Sept 6, 2019
|
next
[–]
Correct
stordoff
on Sept 6, 2019
|
prev
[–]
Still, is there a difference? If there is a bug in the parser, trip it and what was once non-executable might be executable.
allset_
on Sept 7, 2019
|
parent
[–]
Yes. Without executable client side code you can't do things like heap spraying.
saagarjha
on Sept 7, 2019
|
root
|
parent
[–]
Oh, you totally can. You just have to do it by tricking the parser into going it for you.
Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
