ScryEngineering · shuttle1987 · Dec 28, 2019 · Dec 28, 2019 · Dec 28, 2019
diff --git a/content/blog-posts/draft-C-shortcomings/Cshortcomings.md b/content/blog-posts/draft-C-shortcomings/Cshortcomings.md
@@ -0,0 +1,63 @@
+---
+Title: "Why using C as an application development language is increasingly unsound"
+Authors:
+    - "Janis Lesinskis"
+Date: "2019-12-30"
+Tags: 
+    - C
+    - history
+    - economics
+    - programming-languages
+    - application-security
+    - language-security
+contentType: "blog"
+callToActionText: "Need help choosing which programming languages to use for your projects? Get in touch today."
+---
+
+Honestly towards the end of 2019 I think using C for a new project is mostly going to be a poor choice for most projects.
+
+I say this as someone who's had extensive development experience with C and embedded systems.
+
+Here's why I think this.
+
+Every so often I run into someone who says they are making some sort of new project in C, and they will often give some reasons  why they think this is a good idea.
+
+Most of the reasons I encounter come down the the enjoyment of the developers.
+
+After using some other language, particularly some of the more bloated ones coming back to using C seems like such a change.
+The C language is fairly minimal in terms of the language specification and it's fairly easy to get the whole language syntax and rules in your mind at once. Compare this with a nightmare of complexity like C++ or some other languages and this simplicity seems like a minimialist breath of fresh air.
+
+It feels like you are able to understand exactly what's going on at a low level. In some microcontrollers work this is the case, but in something like desktop apps running on x86 this is an illusion.
+
+Furthermore there's all those things that aren't actually supported all that well in C that you end up having to re-write.
+But this can be deceiving, when you are working on some production project that has any significant amount of complexity you start to see the pain points only later on in the process.
+
+
+[The Unix C library API can only be reliably used from C](https://utcc.utoronto.ca/~cks/space/blog/unix/CLibraryAPIRequiresC)
+
+The main issue with using C is that it's a system that, for economic reasons, is often very expensive to develop things in.
+
+You can sometimes cut these costs back by cutting corners.
+For example, you might have poor security, poorly managed memory, random crashes, etc. All of these things will let you get something done in C without it takeing too much time.
+
+
+One of the biggest concerns I have about writing programs in C is that many people don't realize what they are giving up on.
+Sure you might see something that 
+
+## Low level languages
+
+One of the main appeals of C is the apparent lack of abstractions.
+
+Unfortunately there's a lot of abstractions going on that aren't obvious on the surface.
+
+C quite closely matches the instructions of some older equipment, mostly single core single threaded. As such it provides a rather good VM for this sort of machine.
+
+## Language security
+
+Possibly one of the best things to come out of the unsafeness of C is that people started to appreciate the idea of langauge security.
+
+The idea that programming languages can help or hinder you writing secure code is a very important factor.
+
+Unfortunately most *experts* can't write safe C code in larger project.
+
+The difficulty with secure C is the *ergonomics* of the language, because C just makes it far too easy for things to go wrong.