Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security SecProg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Is this list still active?

from [David LeBlanc] Network Security [Permanent Link]
Subject: RE: Is this list still active?
Date: Tue, 23 Nov 2004 18:36:32 -0800 
How about the theory that the list needs more visibility?

I completely dismiss the argument that people have in general given up.
I talk to too many people interested in learning how to avoid security
problems, and know otherwise. People who give up should focus on some
other way to make a living.

Perhaps people are programming more securely, but every time we get to
be better devs, the attackers get to be better attackers. There's also
tons of room for exploring better techniques and processes to create
secure code. 

People probably are also busy fixing existing code, but if they were are
knew about this list, seems to me like they'd be asking questions about
how to overcome common issues.

So, we can either use this list to communicate, or we can go find other
forums to talk about secure programming techniques. 

My $0.02...

-----Original Message-----
From: Jeroen van Drie [mailto:jvdev@3va.net] 
Sent: Tuesday, November 23, 2004 10:37 AM
To: secprog@securityfocus.com
Subject: Re: Is this list still active?



It means one of two things; that people are programming more securely

and  > have no need for this list since they use the suggested best
practices, or  > that people are too busy fixing their existing broken
code.

How about the notion that we've basically given up on security. 

<snip>
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: .Net and security, kingpang
Next by Date:  RE: .Net and security, David LeBlanc
Previous by Thread:  RE: Is this list still active?, Michael Silk
Next by Thread:  Re: Is this list still active?, Jeroen van Drie
Indexes:  [Date] [Thread] [Top] [All Lists]