Bonum Certa Men Certa

What Would Dennis Ritchie Say About the "Memory-Safe" Hype (or Cargo Cult)?

posted by Roy Schestowitz on Jan 04, 2025

Antwerp Medieval Alley

Sebastian Hetze, Linus Torvalds, and Dennis MacAlistair Ritchie having a conversation at the USENIX Annual Technical Conference in January 1997

Sebastian Hetze, Linus Torvalds, and Dennis Ritchie

"Old" does not mean bad. Old can be worse, but it can also be better or equally good.

AS a C programmer myself (since a relatively young age), I'm not too impressed by the Rust hype which I deem a threat to Linux (I explained why in 2022; I had commented in that in prior years too). I'm no stranger to C++ either, but I only started dabbling in C++ relatively late - in my early 20s. In my experience, C++ leads to a higher level of complexity for programs; in some cases, this unnecessarily complicates things for everybody involved.

Based on some shallow - albeit essential - online research, Dennis Ritchie (C and UNIX creator/pioneer/inventor) did in fact meet Linus Torvalds (creator of Linux), shown in the center (photograph above) and the epic/eminent colleague Ken Thompson (nice person, music lover, and UNIX co-creator) said he was moving to GNU/Linux a couple of years ago. Thompson's mind seems very sharp and he can explain technical concepts quickly and fluently despite his age.

There has been some discussion about C++ in recent days because of future plans. "Conflicting interests, differing priorities and lack of participation has stymied the passing of memory safety proposals for C++," Agam Shah wrote 2 days ago. Shah used to write a lot about GNU/Linux, ARM, OLPC etc. so we have a high opinion of him and his work.

The bottom line is, this whole "memory safety" cargo cult has gotten quite loud. A lot of the corporate media got paid to play along with a GAFAM narrative (even RMS swallowed some of that, based on a conversation we had years ago). It's a bit of a distraction, as I'll explain a little later.

The programming languages (or frameworks) are sometimes being blamed for shoddy coding practices. That's like blaming a fall on a lack of safety rails where none are truly needed. That's not to say that coding can be done perfectly, but many times it boils down to developers with a poor grasp of networking (or computing in general) opening up too many sockets, files, or elevating permissions/scope where it's not necessary at all. In other words, fundamental errors can be traced back to misunderstanding of fundamentals. Ask Microsoft why it's alarming developers right now to "patch" .NET crapware; turns out that some domain expiring suddenly became a massive security threat. Whose idea was it to make programs dependent on DNS (and on whoever happens to have some domain registered at the time those programs are run)??? This is terrible design, akin to asking people to just download some program from some random domain (no matter who controls it) rather than some trusted source, which may be physical media, verified at a store or before shipping.

Not knowing much about Ritchie (except he was in poor health because of his lifestyle, or so goes the rumour), there's this meme about his death on the left. As Andy recently pointed out in his long article, Ritchie died at almost the same time as Steve Jobs, but the media only mentioned the latter and still mentions the latter (as if he only died a year ago or last week). Fame and recognition aren't earned in proportion to achievement, contribution etc. Get used to it.

Dennis Ritchie vs Steve Jobs

In discussions about the photo above [1, 2], one person wrote: "Dennis Ritchie, who passed away the same week as Steve Jobs, made contributions to computing that are even more foundational. As the creator of the C programming language and co-developer of the UNIX operating system, his work underpins nearly all modern technology. While Jobs revolutionized consumer products, Dennis innovations built the core infrastructure of computing, enabling the digital world as we know it. RIP Dennis."

At the time the photo was taken he would be about 56 (born 1941) and already well aware of C++ and Java catching on. Many of the important programs were still written in C, not PHP of Python or any of the fancy "Web" things we now have (Ruby on Rails to name one). JavaScript was still relatively new and wasn't yet misused as bloatware for spying.

One reason why safety of C wasn't "all the rage" at the time was, people were working on computers offline or temporarily online (over dial-up/ISDN). Some places were connected over Ethernet that formed LANs (universities and offices), but the connected peers were mostly trusted and not some APT halfway across the globe.

That brings us to the motivations behind Rust and the role of the Linux Foundation, a Microsoft-dominated front group. The GAFAM think tanks (e.g. OpenSSF at the Linux Foundation) want to distract us from their back doors (i.e. intentional security problems), so they look for some scapegoat or a blame-shifting opportunity. If GitHub gets cracked or a project there loses control, they'd blame everything but Microsoft. They'd rather name "Linux" as a culprit than focus on back doors that enable the biggest and worst intrusions, including that of the US Treasury - it boiled down to Microsoft Windows again.

Don't let all the noise and the hype mislead you. The real security culprit is governments (and their pet corporations) wanting security holes to exist. The genuinely accidental holes are nowhere as bad, on average. They're typically hard to exploit remotely.

What would Dennis Ritchie say about all this? Well, late in his life he received awards and recognition in exchange for photo ops with the same political leaders who later demanded back doors or had already implemented them. To what extent was he aware that about a decade after his death the US administration would speak of C as if it was flaky piece of trash that must be avoided by programmers in the name of "security"? Even a kitchen knife can be used as a fatal weapon; yet we don't ban kitchen knives. More than 99% of people use these responsibly (care) and only inside the kitchen (scope)

Other Recent Techrights' Posts

Microsoft Blasted for Adding Insult to Injury: Workers Laid Off Without Prior Notice, Without Severance Payment and Basic Coverage (Like Health), Then Stigmatised as Bad Performers So They Cannot Find a Job Elsewhere
Such stereotypes end entire careers
BetaNews is Still Publishing LLM Slop/SPAM About "Linux"
Assuming it is indeed LLM slop, it seems clear BetaNews has no intention of improving or is simply unable/unwilling to improve
If Matthias Kirschner Loves Free Software, He'll Change the Name of the Microsoft-Sponsored Organisation He Governs (in Order to Avoid Confusion)
The FSF-EEE does not really like Software Freedom, it just loves money (including Microsoft's)
EPO's Local Occupational Health, Safety and Ergonomics Committee (LOHSEC) in The Hague: Workers Are Getting Sicker, Conditions in Which to Assess Patent Applications Deteriorate
"According to the Office statistics the total number of days of absence has gone up from 12.4 to 13.1 total number of sick days per Full Time Equivalent (FTE) from 2023 to 2024."
The Standard Needs to Improve Its Standards for Fact-Checking, Aaron Swartz Had Nothing to Do With Reddit and He Detested the Company That Created It
The Web is already bad enough as it is
New Paper From the EPO Highlights Large-Scale Discrimination at the Office, Where People Are Rewarded for Granting More and More Illegal Patents
Even the Kremlin is probably more competent than this
 
IBM Layoff Rumours, Large-Scale Implementations Weeks Ahead (in March 2025)
There are some people corroborating
Links 11/02/2025: Nutritional Poverty, Closure of USAID, More Fictional 'Valuations' Around Buzzwords
Links for the day
Perl Programming Leftovers
recently in perl.org
Microsoft in Africa: From 98% to Less Than 10% in Just 16 Years
Microsoft being on less than 1 in 10 Web-connected devices in Africa is a very big deal
Almost as If MElon Reads Techrights
The joke we started appears to be spreading
Gemini Links 11/02/2025: NeoVim and Deploying Other People's Code
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, February 10, 2025
IRC logs for Monday, February 10, 2025
Scheduled Maintenance Tomorrow and on Valentines
If the site (or Gemini capsule) is offline for a bit, the maintenance windows are likely the root cause
Soylent News Lessens the Scope of Discussion Due to Persistent Trolling and Online Abuse
if they make it a lot harder for new people to participate, then they limit the "general appeal" and reach
When the Livestream of Richard Stallman is Apparently Bury-Brigaded Offline You Finally Learn to Avoid Google/YouTube for Streaming
Please, people, stop uploading to Google/YouTube
Links 10/02/2025: Ban on D.E.I. Language, Listeria Risk/Outbreak
Links for the day
Links 10/02/2025: Announcing "Stringless" and Mental Health Improvement
Links for the day
Links 10/02/2025: Facebook Mass Layoffs, "Meta" Did What Aaron Swartz Had Done But to the Tune of 81.7 Terabytes
Links for the day
Microsoft Tarnishing the Brand of Arch
Of course Arch can do whatever it wants, but being associated with Microsoft is a badge of shame
The Ultimate and Inevitable Fall of OpenAI (Even Brave is 'Bigger' Now)
"When you advertise at the Super Bowl, you’ve reached just about every consumer in America. It’s the last stop. If you’re not profitable yet, you never will be."
Adding Slop to Your Blog Only Makes One Assume All the Text is LLM Slop
Simon Coter from Oracle has turned to slop
Macao is Leaving Microsoft Behind
Windows is falling to new all-time lows
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, February 09, 2025
IRC logs for Sunday, February 09, 2025
Microsoft's WSL (LSW) Shows That It Can Never Love Linux, Only Windows
that's just how Microsoft rolls
Activism in Times of War and a Coup
'Linux' Foundation works for fascism
What the Silencing of Neatnik Tells Us About Linus Torvalds Inside a Microsoft-Dominated 'Linux' Foundation
Is Linus Torvalds free to express his mind as he wishes about every topic, even just any technical topic?
Windows Down to 11.35% in Senegal, as Measured by statCounter
Another all-time low (Windows was at 99% in 2009)
"Latest Technology News" in BetaNews is LLM Slop Promoting OOXML and Proprietary Software at the Expense of LibreOffice and OpenDocument Format (ODF)
Remember that "open-source" and Open Source aren't the same; the former is fake
Links 09/02/2025: Coffee, Toxic Productivity, and Programming
Links for the day
Debian's Human Rights violations & Swiss women Nazi symbolism
Reprinted with permission from Daniel Pocock
Links 09/02/2025: Software Patents on MP3 and Another Scam Dressed Up as "Crypto"
Links for the day
Links 09/02/2025: Russian Energy Cut Off, LLM Pushers Show Signs of Desperation
Links for the day
Richard Stallman (RMS) Does Not Have Media Companies and Lobbyists on His Side, But His Message Spreads Regardless
The message of RMS is spreading in spite of all the smears
GNU/Linux Rises to All-Time High in Chile
sharp rise for GNU/Linux in Chile
Links 09/02/2025: Hottest January on Record, Panama Blackmailed
Links for the day
Why We Still Love Gemini Protocol
Gemini Protocol may seem like something "old" (it's actually very new) and something "nobody would use", but many people use it
Gemini Links 09/02/2025: "Died as a Mineral" and Game Interface for a Non-Game
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, February 08, 2025
IRC logs for Saturday, February 08, 2025