Firewall Wizards mailing list archives
Re: Why are developers choosing to...
From: hermit921 <hermit921 () yahoo com>
Date: Fri, 20 Jan 2006 09:50:59 -0800
Here is my admittedly jaundiced opinion. In the last few years I see more and more developers who work in a GUI IDE, and don't understand basic concepts. For example, the concept of a network port. I had one developer that insisted his application didn't listen on a port, it used the subnet. Some of them don't understand the concept of a directory structure, either.
I am starting to blame a lot of this on GUI development products. I am trying to be nice and not completely blame the developers and the bozo managers who hire them. The IDE takes care of everything other than the actual code by using various default settings. This leaves the developers without any reason to learn what environment the application has to work in. It works in their GUI, doesn't it?
hermit921 At 09:34 AM 1/20/2006, Behm, Jeffrey L. wrote:
Why are developers choosing to write "web-based" code that runs some sort of encryption, typically SSL, across a non-standard port (say 10443) and then having those URLs blow up when they try to traverse the prudent company's perimeter security...You know..."deny all that is not explicitly allowed." I am seeing more and more "websites" that use a URL such as http://register.at.my.site:10443. Why not just use the standard secure port 443 from the get go? Is there something that makes SSL across 10443 innately more secure, or is this just the "security by obscurity" smoke-and-mirrors trick? Opinions? Jeff
_______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Why are developers choosing to... Behm, Jeffrey L. (Jan 20)
- Re: Why are developers choosing to... Paul D. Robertson (Jan 20)
- Re: Why are developers choosing to... Joseph S D Yao (Jan 20)
- Re: Why are developers choosing to... Paul D. Robertson (Jan 20)
- Re: Why are developers choosing to... Joseph S D Yao (Jan 20)
- Re: Why are developers choosing to... Karl Mueller (Jan 20)
- Re: Why are developers choosing to... Adrian Grigorof (Jan 20)
- Re: Why are developers choosing to... Greg Spath (Jan 20)
- Message not available
- Re: Why are developers choosing to... hermit921 (Jan 20)
- Re: Why are developers choosing to... Paul D. Robertson (Jan 20)
- Re: Why are developers choosing to... hermit921 (Jan 20)
- Re: Why are developers choosing to... Paul D. Robertson (Jan 20)
- Re: Why are developers choosing to... Darren Reed (Jan 20)
- Re: Why are developers choosing to... mlh (Jan 23)
- Re: Why are developers choosing to... Barney Wolff (Jan 23)
- <Possible follow-ups>
- Re: Why are developers choosing to... Keith A. Glass (Jan 20)
- Re: Why are developers choosing to... Greg Spath (Jan 20)
- RE: Why are developers choosing to... Behm, Jeffrey L. (Jan 20)
- RE: Why are developers choosing to... Behm, Jeffrey L. (Jan 20)