|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Extreme Hacking
Marcus J. Ranum (mjr
nfr.net)
Wed, 07 Jul 1999 11:40:14 -0400
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Joseph S D Yao: "Re: TCP port 7 traffic from DoubleClick"
- Previous message: Carric Dooley: "Re: IDS: Net Ranger vs. RealSecure vs. NFR"
- In reply to: SiOL CERT: "IDS: Net Ranger vs. RealSecure vs. NFR"
- Next in thread: Ge' Weijers: "Re: Extreme Hacking"
- Reply: Ge' Weijers: "Re: Extreme Hacking"
- Reply: Darren Reed: "Re: Extreme Hacking"
Ge' Weijers wrote:
>On the other hand: those who need to develop security-related code,
>protocols etc. do need to have an awareness of common exploits.
Yes, and no. They need to know classes of bugs to avoid, and
categories of common mistakes. For example, if you're developing
security critical code you need to know what buffer overruns are
and how to prevent them -- you do not need an exploit script that
tickles a bug in the latest version of BIND.
mjr.
-- Marcus J. Ranum, CEO, Network Flight Recorder, Inc. work - http://www.nfr.net home - http://www.clark.net/pub/mjr
- Next message: Joseph S D Yao: "Re: TCP port 7 traffic from DoubleClick"
- Previous message: Carric Dooley: "Re: IDS: Net Ranger vs. RealSecure vs. NFR"
- In reply to: SiOL CERT: "IDS: Net Ranger vs. RealSecure vs. NFR"
- Next in thread: Ge' Weijers: "Re: Extreme Hacking"
- Reply: Ge' Weijers: "Re: Extreme Hacking"
- Reply: Darren Reed: "Re: Extreme Hacking"
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:19:02 CDT