2006-07-07 06:50:00
By Tim Brown
Got a large number of advisories on the way, some of them quite critical but what is most interesting is that developers still don't understand security and implications of software failure. I'm starting to get quite irritated with developers, both the open and closed source varieties ignoring or even denying the problems I report. Now call me unfair, but were I the end user of some of these products I'd be getting pretty pissed off. What part of directory traversal, heap overflow or XSS are they missing? It's sad to think that Microsoft are the ones leading the way, even if they're still struggling under the weight of past mistakes. Expect the first batch advisories to start dropping in 14 days.
Mood: Irritated
Music: Nothing playing right now
You are unknown, comment