Full Disclosure mailing list archives

Re: Gates: 'You don't need perfect code' for good security

From: Valdis.Kletnieks () vt edu
Date: Tue, 04 Nov 2003 09:22:44 -0500

On Tue, 04 Nov 2003 06:03:40 EST, Geoincidents <geoincidents () getinfo org>  said:

Nonsense, you read to many MS papers <g>. Lots of ISP's run SQL servers on
the internet for radius authentication, where the database and stored
procedures are not exposed.


The SQL server doesn't have to be accessible to the Internet.  It only
has to be accessible to those machines authorized to do authentication
lookups.

There's reasons why 'best practices' call for a physically separate
management network....

Attachment: _bin
Description:

Current thread:

RE: Gates: 'You don't need perfect code' for good security, (continued)
- - RE: Gates: 'You don't need perfect code' for good security Cedric Blancher (Nov 01)
  - Re: Gates: 'You don't need perfect code' for good security William Warren (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security Matthew Murphy (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security Geoincidents (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security Matthew Murphy (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security Geoincidents (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security George Capehart (Nov 03)
    - Re: Gates: 'You don't need perfect code' for good security Geoincidents (Nov 03)
    - Re: Gates: 'You don't need perfect code' for good security George Capehart (Nov 03)
    - Re: Gates: 'You don't need perfect code' for good security Geoincidents (Nov 04)
    - Re: Gates: 'You don't need perfect code' for good security Valdis . Kletnieks (Nov 04)
    - Re: Gates: 'You don't need perfect code' for good security Dave Howe (Nov 04)
    - Re: Gates: 'You don't need perfect code' for good security George Capehart (Nov 04)
    - Re: Gates: 'You don't need perfect code' for good security Nick FitzGerald (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security Valdis . Kletnieks (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security Frank Knobbe (Nov 02)
    - Re: Gates: 'You don't need perfect code' forgood security Lan Guy (Nov 03)
    - Re: Gates: 'You don't need perfect code' for good security Nick FitzGerald (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security Darren Reed (Nov 02)
    - Re: Gates: 'You don't need perfect code' for good security Cedric Blancher (Nov 02)
  - RE: Gates: 'You don't need perfect code' for good security Ron DuFresne (Nov 03)

(Thread continues...)