Insider threats and software {darkreading thread}

[gem at cigital.com (Gary McGraw)]

Hi all,

As is often the case with these darkreading things, we have two discussion threads going.  Those of you interested in a 
very well thought out counter argument to my position should read kevin's excellent posting on darkreading.

http://www.darkreading.com/boards/messages.asp?thread_id=165118&msg_id=147279&t=true#msg_147279

gem

company www.cigital.com
podcast www.cigital.com/silverbullet
book www.swsec.com

-----Original Message-----
From: Wall, Kevin [mailto:Kevin.Wall at qwest.com]
Sent: Friday, August 17, 2007 1:38 AM
To: Gary McGraw
Subject: Posted thread on your Dark Reading column (was "RE: [SC-L] Insider threats and software")

Hi Gary,

Our Exchange server was down for awhile so rather than posting
a reply to your post on SC-L, I simply created a reply thread
on your Dark Reading column.

Given that, I'm not sure that it's worth posting to SC-L too.
Give it a read and see what you think. Or maybe they could just
be referred to the URL if you think it actually contributes
anything of value.

Cheers (or is that beers?),
-kevin
---
Kevin W. Wall           Qwest Information Technology, Inc.
Kevin.Wall at qwest.com    Phone: 614.215.4788
"The reason you have people breaking into your software all
over the place is because your software sucks..."
 -- Former White House cyber-security adviser, Richard Clarke,
    at eWeek Security Summit


This communication is the property of Qwest and may contain confidential or
privileged information. Unauthorized use of this communication is strictly
prohibited and may be unlawful.  If you have received this communication
in error, please immediately notify the sender by reply e-mail and destroy
all copies of the communication and any attachments.