Secure Coding mailing list archives

Re: Re: Application Insecurity --- Who is at Fault?

From: Michael Silk <michaelslists () gmail com>
Date: Thu, 14 Apr 2005 15:36:32 +0100

I don't think that analogy quite fits :) If the 'grunts' aren't doing
their job, then yes - let's blame them. Or at least help them find
ways to do it better.

-- Michael

[Ed. Let's consider this the end of the thread, please.  Unless someone
wants to say something that is directly relevant to software security,
I'm going to let it drop.  KRvW]

On 4/13/05, Dave Paris <[EMAIL PROTECTED]> wrote:

So you blame the grunts in the trenches if you lose the war?  I mean,
that thinking worked out so well with Vietnam and all...  ;-)

regards,
-dsp

I couldn't agree more! This is my whole point. Security isn't 'one
thing', but it seems the original article [that started this
discussion] implied that so that the blame could be spread out.

If you actually look at the actual problems you can easily blame the
programmers :)

Current thread:

Re: Re: Application Insecurity --- Who is at Fault?, (continued)
- - - Re: Re: Application Insecurity --- Who is at Fault? Dave Paris (Apr 11)
    - RE: Re: Application Insecurity --- Who is at Fault? Chris Matthews (Apr 11)
    - Re: Re: Application Insecurity --- Who is at Fault? Michael Silk (Apr 11)
    - Re: Re: Application Insecurity --- Who is at Fault? der Mouse (Apr 12)
    - Re: Re: Application Insecurity --- Who is at Fault? Michael Silk (Apr 12)
    - Re: Re: Application Insecurity --- Who is at Fault? der Mouse (Apr 12)
    - Adding some unexpected reliability expectations ljknews (Apr 13)
    - Re: Adding some unexpected reliability expectations Rob, grandpa of Ryan, Trevor, Devon & Hannah (Apr 13)
    - Re: Re: Application Insecurity --- Who is at Fault? Michael Silk (Apr 13)
    - Re: Re: Application Insecurity --- Who is at Fault? Dave Paris (Apr 13)
    - Re: Re: Application Insecurity --- Who is at Fault? Michael Silk (Apr 14)
    - Re: Re: Application Insecurity --- Who is at Fault? Dave Paris (Apr 14)
    - Re: Re: Application Insecurity --- Who is at Fault? Damir Rajnovic (Apr 11)
    - RE: Re: Application Insecurity --- Who is at Fault? Yousef Syed (Apr 11)
    - Re: Application Insecurity --- Who is at Fault? Dave Paris (Apr 07)
    - Re: Application Insecurity --- Who is at Fault? Michael Silk (Apr 07)
    - Re: Application Insecurity --- Who is at Fault? ljknews (Apr 07)
    - Re: Application Insecurity --- Who is at Fault? Julie JCH Ryan, D.Sc. (Apr 08)
    - Re: Application Insecurity --- Who is at Fault? Crispin Cowan (Apr 08)
    - Re: Application Insecurity --- Who is at Fault? George Capehart (Apr 19)
    - Re: [ot] Application Insecurity --- Who is at Fault? Pete Shanahan (Apr 10)

(Thread continues...)