On Sun, Apr 10, 2011 at 1:37 PM, James Reeves <[email protected]> wrote: > By adding error messages to predicates, we tightly couple the > validation error with the predicate, which in general is considered > bad. However, this might be a valid compromise, but only if it > improves readability.
I showed two posts ago how to keep that decoupled. > I don't really understand what you're saying here. Do you disagree > that "deny by default" is more secure in general than "allow by > default"? I think it's a bit subtler than that. On the face, I wouldn't disagree with that statement. But if you arrive at your security rules by two different procedures, one resulting set of rules might specify what-to-deny and be more secure than another that specifies what-to-allow. And ultimately there's a mathematically equivalent what-to-allow set for any what-to-deny set, and vice versa, like a photograph and its negative. -- You received this message because you are subscribed to the Google Groups "Clojure" group. To post to this group, send email to [email protected] Note that posts from new members are moderated - please be patient with your first post. To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/clojure?hl=en
