RE: Summary: Growing Bad Practice with Login Forms

["Mark Curphey" <mark () curphey com>]

Agreed. Dead thread. 

-----Original Message-----
From: Serg B. [mailto:serg () dodo com au] 
Sent: Sunday, August 01, 2004 7:48 AM
To: webappsec () lists securityfocus com
Subject: Re: Summary: Growing Bad Practice with Login Forms

This topic is getting annoying.

On Sun, 2004-08-01 at 15:12, Jimi Thompson wrote:
> <SNIP>
>
> > Both my bank and the stock trading company I use claim to use "The 
> > best minds in the security industry"
> >  
> </SNIP>
>
> Funny, I haven't heard from them.  Seriously, the folks that I've seen 
> posting statements like this dreamed up some crap in a backroom that 
> sounded good to the suits who generally have exactly 0, zip, nil, 
> nada, NO understanding of the technical implications of what they are
doing.
> In your case, I'd be moving my money somewhere that has a clue.  If 
> they aren't taking proper care of it via their web site, what else are 
> they lax about that will be causing you problems later?
>
> 2 cents,
>
> Jimi