lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <C1AF8801.F509%Jason@TechDude.Ca>
Date: Thu, 21 Dec 2006 00:38:25 -0500
From: "Jason Muskat, GCFA, GCUX, de VE3TSJ" <Jason@...hDude.Ca>
To: KT <ktriv3di@....com>, <full-disclosure@...ts.grok.org.uk>,
	<websecurity@...appsec.org>
Subject: Re: [WEB SECURITY] comparing information security
 to other industries

Hello,

People, programmers, computers, software, design patterns, systems, and
infrastructure are constantly changing, often being reinvented. As such,
will never be stable.

Concrete of a type is always the same and therefore predictable. One can
state with certainly that a concrete slab will perform to design. This will
ever be possible in IT.

Many commercially produced software products donĀ¹t have any warranty. Many
even state that the software is not warranted for any function or purpose.
... The fact that the software does something that one thinks it should do
is incidental. 


Regards,

-- 
Jason Muskat  | GCFA, GCUX - de VE3TSJ
____________________________
TechDude
e. Jason@...hDude.Ca
m. 416 .414 .9934

http://TechDude.Ca/



From: KT <ktriv3di@....com>
Date: Tue, 19 Dec 2006 12:16:29 -0800
To: <full-disclosure@...ts.grok.org.uk>, <websecurity@...appsec.org>
Subject: [WEB SECURITY] comparing information security to other industries

So we have been dealing with information security from last 20 years and
still the world is at large lost. We still see banks vulnerable to trivial
XSS attacks and software broken by buffer overflows. How do we compare to
other industries like construction, engineering, finance? What I am trying
to figure out is how mature we are and how long will it take for to get
stable?



Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ