Defensive programming

[Paul Rubin]

Jack Diederich <jack at performancedrivers.com> writes:
> The author brought this up on python-dev and the 'bots did indeed
> disect the arguments.  The verdict was that it is interesting but not a
> problem (or at least a solvable problem) in practice.  Specific problems are 
> best solved at specific layers, and DoS attacks that eat CPU are best solved
> at the operating system level.

I think there's something to be said for using collision resistant
hashes whenever any kind of hash is needed.  Why fall back on the OS
to get you out of trouble, when you can avoid getting in trouble in
the first place?  I haven't read the papers yet though.