[erlang-questions] A less trusting Erlang.

Jim McCoy jim.mccoy@REDACTED
Tue Oct 13 19:02:22 CEST 2009

As much as I would love to see some work go into making Erlang more
"internally secure" I would probably prefer to see the effort directed
at making it easier and less cumbersome to run distributed erlang
across untrusted networks.  Something as simple as a flag to make all
node-to-node communication run over SSL and a few of the previously
discussed tweaks to make epmd less susceptible to DoS attacks would
probably deliver more short-term benefit to the community at large.


On Mon, Oct 12, 2009 at 11:45 PM, Kenneth Lundin
<kenneth.lundin@REDACTED> wrote:
> We have not been able to prioritize work towards "SAFER" built in
> distribution mechanisms
> since the current implementation support local trusted networks well
> enough and that
> was the intended use from the beginning. This kind of distribution is still
> the dominating.
> It might whoever be the right time to do something in this area now.
> /Kenneth Erlang/OTP Ericsson

More information about the erlang-questions mailing list