lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <200310191741.h9JHfKN5032606@turing-police.cc.vt.edu>
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks@...edu)
Subject: NASA.GOV SQL Injections 

On Sun, 19 Oct 2003 10:58:59 CDT, Paul Schmehl <pauls@...allas.edu>  said:

> I could be wrong, but I don't think geniuses work in the trenches.  I think 
> they do research.  I'm not aware of any geniuses in security.  Are you?

Paul.. learn to read.  I said you need at least one genius because the grunts
in the trench need direction.

And yes, some security geniuses do mostly theoretical research (most
cryptographers for example).. but there's a lot of very clever people who spend
most of their time thinking about how to make real-world security palatable for
the users (for example, I don't think Schneier has had much time to do crypto
work of late, and Steve Bellovin took time out to write RFC3514).

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20031019/962bde75/attachment.bin

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ