| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 06 Dec 2007 02:12:16 -0500
From: Valdis.Kletnieks@...edu
To: nick@...us-l.demon.co.uk
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: need help in managing administrators
On Thu, 06 Dec 2007 19:36:30 +1300, Nick FitzGerald said:
> likelihood of those problems being permanently addressed, why were
> these issues not addressed at some point when the cost/performance
> points started to be more favourable?
Because when the price/performance shifted to make lots of security features
more feasible, the *same* shift also made it possible to display dancing
hamsters. And one latecomer on particular to the dance decided its best
business strategy was selling things that made hamsters dance, and were
monopolisticically successful at it, to the point where the well has been
poisoned, and it's now a hard sell to convince people that the hamsters (or
any other sort of "active content") are a security risk.....
(To be fair, it *must* be noted that when looked at as a *financial* question,
the marketing of hamsters over security was in fact a *good* decision on the
part of the company - glitz is cheaper than security design, and it sells more.
And for-profit corporations are there to make a profit, sooo.....)
Content of type "application/pgp-signature" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists