Beyond Best Practices

[dave <dave () immunitysec com>]

I've updated the Immunity resources page with the slidepack for the 
OWASP talk I gave yesterday. Feel free to bag on it here.

One thing that really gets to me is when people use the IBM "paper" on 
finding and fixing bugs in the design cycle as a marketing and sales 
pitch. "Vulnerabilities are 1000000 times easier to fix in design, etc". 
That paper is hugely old, and isn't about security. Everyone needs to 
stop quoting from it as if it meant something. The more people quote 
from it, the more it gains an air of legitimacy, which it really 
shouldn't have.

Thanks,
Dave Aitel
VP Marketing and Sales
Immunity, Inc.

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://www.immunitysec.com/mailman/listinfo/dailydave