Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Languages/platforms used for Web apps. Any stats?

from [Mamading Ceesay] Network Security [Permanent Link]
Subject: Re: Languages/platforms used for Web apps. Any stats?
Date: Sun, 26 Jun 2005 22:57:30 +0100 
On 6/25/05, Mark Susol Ultimate Creative Media
<msusol@ultimatecreativemedia.com> wrote:


For this reason I prefer to make my own custom php applications so my code
isn't out there to be studied. However for something like a forum, you kinda
have to hope those programming are keeping up with this unintended
consequence of having their code hanging out there for all to study.

Sometimes is better knowing you paid for that security rather than going the
open source route. With that said, I'm still using some stuff I bought that
is in php and the code is out there enough to be studied.



<delurk>
This sounds disturbingly like an argument for "security through
obscurity".  I would hope the denizens of a list devoted to Web
Application Security would know better than this.

I'm sure the likes of Bruce Schneier and the OpenBSD crew would have
some choice words if faced with these sentiments.
<relurk>

-- 
Mamading Ceesay

"You never change things by fighting the existing reality. To change 
something, build a new model that makes the existing model obsolete." 
-- R. Buckminster Fuller
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Should login pages be protected by SSL?, dave kleiman
Next by Date:  Re: Should login pages be protected by SSL?, Michael Silk
Previous by Thread:  Re: Languages/platforms used for Web apps. Any stats?, Jesse G. Lands
Next by Thread:  Re: Languages/platforms used for Web apps. Any stats?, Andrew van der Stock
Indexes:  [Date] [Thread] [Top] [All Lists]