|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-Disclosure] Security & Obscurity: First-time attacks and lawyer jokes
From: Georgi Guninski (guninski
guninski.com)
Date: Thu Sep 02 2004 - 14:26:22 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Thu, Sep 02, 2004 at 12:24:29PM -0400, Peter Swire wrote:
> ...... In talking
> with people who write software, however, I was repeatedly struck by
> their observation that it takes considerable hard work and expertise to
> find new vulnerabilities....................
darling,
you are missing the point.
i can't sing, but this does not make singing a hard (NP) problem.
what do you expect, the developers to say: "we are so fuckingly lame, so any
nonstandard kid from a third world country can fuck us hard"?.
for the sake of the argument, let's assume there are as low as 10^6 bugs in m$
warez. to take over the world (and in particular any target thereof) a kid
needs as low as 10^2 or even 10 or even 1 exploits.
any "real world" ('tm' of god) analogies?
--
It's better to be a pirate than join the navy. -- steve jobs
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]