[AusNOG] ABC Website Hacked

Luke Smith luke at smith.name
Thu Feb 28 08:53:57 EST 2013


On the whole it boils down to this;
>
>     1. Web application developers, on the whole, simply don't understand
> security - they're interested in rapidly delivering product.
>
>     2. Project managers, on the whole, simply don't understand security -
> they're interested in the developers rapidly delivering product.
>
>     3. Management, on the whole, simply don't understand security -
> They're interested in the project managers getting the developers to
> rapidly deliver product.
>
> ... And so on and on it goes.
>
> </rant>


Maybe they do understand it, but have accepted the risk/reward trade-off in
the system they implemented?

Nothing is without compromise.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20130228/5e2c65fc/attachment.html>


More information about the AusNOG mailing list