WebApp Sec mailing list archives
Re: Prevent security bypass
From: Adrian Wiesmann <awiesmann () swordlord org>
Date: Thu, 6 Feb 2003 19:53:16 +0100
I'm having a hard time buying this argument, mainly because .NET is entirely new code.
My complete ACK. I even have those sentences in my head coming from MS marketeers themselfs stating that rebooting after software installation would be not be seen with W2k anymore... *cough*
If the poster isn't already tied to .NET, having them move to an immense new chunk of beta-quality code seems like a dubious suggestion, IMO.
It's one of the main problems I often see in my work. Often developers use those technologies of which a marketeer/evangeliste praied that it would solve a special problem, but unfortunately the deepness of knowhow is then often missing. This brings in new security problems... A problem can be solved with nearly every technology, the question is what the problem is about and what are the needs. And anyway. I still got not enough info from the first poster about what he really wants to do and what the needs are to be able to tell him the best solution... Regards, Adrian Wiesmann
Current thread:
- Re: Prevent security bypass, (continued)
- Re: Prevent security bypass Ken Rachynski (Feb 04)
- RE: Prevent security bypass David Cameron (Feb 04)
- RE: Prevent security bypass Vinny Bedus (Feb 05)
- Re: Prevent security bypass Chris Travers (Feb 05)
- RE: Prevent security bypass Vinny Bedus (Feb 05)
- RE: Prevent security bypass Logan F.D. Greenlee (Feb 05)
- RE: Prevent security bypass Kim Christiansen (Feb 05)
- RE: Prevent security bypass Mark Mcdonald (Feb 05)
- Re[2]: Prevent security bypass M. Austin Hill (Feb 05)
- RE: Prevent security bypass TUER, DON (Feb 06)
- Re: Prevent security bypass Alex Russell (Feb 06)
- Re: Prevent security bypass Adrian Wiesmann (Feb 06)
- Re: Prevent security bypass Chris Travers (Feb 07)