you gain some you loose some,

40 years ago they had to make sure everything was working properly. It was a major issue back then to get anything fixed afterwards.

These days developers roll out half-backed software all the time and rely on pushing fixes over the internet afterwards.

It would be irresponsible not to fix something many people use. People aren't simply going to stop using X11 because it is insecure. Hardly anyone on the planet has time to care for software security. just look at how entire countries are using unpatched old copies of Windows 10.
People don't simply interrupt their workflows to adopt more secure technologies. If it weren't for older computers having obsolete hardware or simply getting damaged, half the planet would still be using Windows XP today.

Anyone who writes code will make mistakes in whatever they write. In fact, they keep making the same mistakes. You do not need to hear that from me. John Carmack has a write up where he explicitly states that developers keep making the same mistakes:

It is a general rule. A project that avoids this would be abnormal. Such a unicorn likely does not exist unless formal verification is involved, but that would be very much abnormal, since production software does not use formal verification.

If you were to do a break down of security fixes to Linux by the age of the vulnerability, you would find that after the first few years, the number of vulnerabilities found drops precipitously. Of course, you often hear about ancient bugs being found in Linux in the news, but the reality is that there are very few of these, because security issues in mature code are rare. I have seen a chart showing this and it is unfortunate that I cannot find a link.

For every issue found in mature code, there will be many more bugs found in new code.

Well if we are talking about these kinds of security vulnerabilities and rewriting it in Rust specifically, such a vulnerability wouldn't be possible in Rust (Rust fails to compile on use after free errors).

That being said, I don't think any sane person would think its wise to rewrite X.org in Rust but its for other reasons.



While this is true, as with any study/analysis the hypothesis/requirements need to be taken into account. Most of this analysis is not rewriting the software in a safer language (i.e. Rust), instead its about rewriting it in the same typical popular but unsafe languages that most people are used to. Point here is that Rust is very unique in this regard, its one of the only mainstream languages that actually prevents an entire suite of security issues.

And there have been studies on this, and it does show that Rust does significantly reduce such types of errors. This is why even for non trivial software (i.e. Firefox), people have been rewriting parts of it exclusively in Rust.



This is not entirely true. Type systems which is how Rust implements its compile time checks for memory access (specifically its a linear type system) has been formally verified to be correct, and type systems are equivalent to mathematical proofs.

Now of course that doesn't mean that Rust can prove everything, thats not even possible (see godel's incompletness theorem), but what it does mean is that you can prove that certain parts of the program will uphold a certain property. So if we are talking about use after free errors, which is a subset of memory management related errors then Rust can absolutely prove that assuming you don't use unsafe, that these specifics errors won't happen.

And studies have shown that such memory management related errors account for ~70% of the related security issues found in modern software, especially software written in C/C++ (which Xorg is a typical example of).

​

So basically it is still probably safer to run than your average web browser...

For those who have SSH X forwarding enabled... well there isn't much alternative anyway. They have VNC or Pipewire. Neither are the same.

Wayland will never reach feature parity with X11 simply because that's not its goal, like MacOSX didn't have feature parity with MacOS Classic and X itself didn't have any feature parity with NeWS. Wayland is designed for the workflows and use cases that those who develop it deem sensible, but they never claimed that the entire legacy X-based ecosystem would be supported or even that it would be possible to reproduce it.

It's kind of their problem. The truth is that nobody will spend time and resources on project that nobody uses. And users and devs are switching to Wayland. You cannot force X11 devs to fix all issues. But since it's OSS – you can fix them on your own.
Yeah, this is the issue. But this doesn't really matter. If people use old, insecure software then they wouldn't update X11 anyway. So in this case it doesn't matter if sb fixes remaining issues or not. And some of X11 issues are really hard (impossible?) to fix.

Oh yeah, John Carmack, the most overrated developer in the gaming industry.... Was involved in Doom 30 years ago, then somehow his word is gospel even decades after he stopped being relevant or even coding himself (and left after the disgrace that was Rage proved he had lost his touch)... Still has faithful religious zealots that take his words as gospel it seems...

No, good coders do not easily make mistakes. And modern tools are better for writing bugless code than older tools. Yes, mistakes do happen, but believing that professional software engineers are chimpanzees incapable of learning from their mistakes, is only something that hack, Carmack, and his gaming fanbois, would say and defend.

In fact, newer code tends to be safer, more stable, and more optimized than older code in my experience. Back in the day no one was experienced in parallel programming and multithreaded software was garbage, for example. These days you can see that people have gained experience in managing more threads, and the software frameworks/libraries they use are better as well.