Comments on: Cyber-Holes in Your Software

By: Buy metin2 gold

Buy metin2 gold — Wed, 20 Aug 2008 01:22:29 +0000

If you want to Buy metin2 gold you can go to the company. I hope that we will become good friends in the Cheap metin2 gold game.

By: Metin2 gold

Metin2 gold — Wed, 20 Aug 2008 01:15:50 +0000

Of course the Metin2 yang can bring funs. I believed that you will love this Metin2 gold new game.

By: eve isk

eve isk — Wed, 06 Aug 2008 02:02:07 +0000

In order to make a little bit of hundreds of thousands of eve isk, I commanded all of the staff hung up the number on the computer, and help me mine the mining.

By: cheap kamas

cheap kamas — Wed, 06 Aug 2008 02:00:26 +0000

So I take my all cheap kamas to help you, because it is unworthy much money.

By: cheap kamas

cheap kamas — Wed, 06 Aug 2008 01:55:54 +0000

So I take my all cheap kamas to help you, because it is unworthy much money.

By: 007

007 — Wed, 14 May 2008 00:26:37 +0000

MAC — the only thing that is pretty much crap is you! This article brings to light the fact that NO ONE is exploring the accident/error vs intentional. Your excuse is out and out lame. Attitudes like yours helps prolong the problem — get with it and become part of the answer.

By: Mac

Mac — Fri, 25 Apr 2008 11:55:49 +0000

As I stated in my closing comment, we believe it’s an issue. The point was that this article is pretty much crap when it comes to telling you anything useful about it.
I attempted to provide some insight about why publicly-discovered exploits are not “investigated” to see if they were intentional.
None of the subsequent criticisms even come close to addressing either of those points, which are directly related to the topic of the article.
Reading for comprehension: try it.

By: Kevin

Kevin — Wed, 23 Apr 2008 23:44:55 +0000

I have a question to everyone but I want to address it to Dr. Curiosity. I received and interesting phone call that asked this question.
Should there be liability for those that produce products that are used as a cyber weapon?
And the second question was -
Should there be liability for an organization who has their systems taken over and used to attack another entity?
What do you think

By: Dr. Curiosity

Dr. Curiosity — Wed, 23 Apr 2008 16:57:02 +0000

While R&D into vulnerability detection and protection is certainly a good idea, I think the industry could gain a lot from education and training, too.
There are a heck of a lot of software developers out there who have negligible or only cursory awareness of the kinds of coding and architectural practices that could reduce the number of vulnerabilities in the systems they’re making. Even assuming that they’re working on projects where security is given a high priority, which it often isn’t.
A whole bunch of companies out there are writing code that’s barely secure enough to avoid them being sued — and are too busy patching and fighting fires to be building proper firewalls. Commercial software security can improve, but it’ll take more than R&D: it’ll take education, awareness, and a threat to the commercial bottom line.
(Oh, and I agree with Mac on the “cyber-” thing. Prefixing everything with that went out of fashion in the late ‘90s. Calling a hole in software a “cyber-hole” is redundant at best.)

By: 007

007 — Tue, 22 Apr 2008 19:29:09 +0000

Whooooooo What does MAC have to hide? I thnk we need to look at his code. After a dozen years being an investigator I always look at who is protesting the loudest. Come on MAC let me come look at your code