Pretty Good at Gettin' By

Pretty Good at Gettin' By
George Smith, 2003-10-27

Whether it's a student slipping contraband past airport metal detectors, or a researcher modeling an unstoppable computer virus -- demonstrations just don't do justice to the real state of security.

Expand all | Post comment

Pretty Good at Gettin' By 2003-10-28
Anonymous (2 replies)

Pretty Good at Gettin' By 2003-10-29
bl0rf

Pretty Good at Gettin' By 2003-10-30
Anonymous

Strip-searching passengers... 2003-10-28
Anonymous

disagree with author 2003-10-28
Anonymous

Pretty Good at Gettin' By 2003-10-29
Anonymous (1 replies)

Pretty Good at Gettin' By 2003-10-31
Anonymous (1 replies)

Pretty Good at Gettin' By 2003-11-04
SFN

Pretty Good at Gettin' By 2003-10-29
Anonymous

Pretty Good at Gettin' By 2003-10-30
Siddhartha Jain

Pretty Good at Gettin' By 2003-10-30
a security expert for the fbi (2 replies)

Pretty Good at Gettin' By 2003-10-30
Anonymous

Pretty Good at Gettin' By 2003-10-31
Anonymous

Your post is a bit confusing ...

Should researchers be punished or not? You left out how you go about proving a flaw exists without attempting to do it? Also, companies don't react unless there is "real" proof that is reproducible. Afterall, companies (government included) don't want to spend time or money running around everytime "Chicken Little" screams "The sky is falling!"

Most networks are more secure this month compared to last month because the virii have actually abused the various exposed flaws. If people don't have to apply patches, they haven't been.

I know from personal experience I had been ignored by my own company until the flaws exposed how serious the Microsoft bugs were. Or how serious some of the Cisco bugs were ... etc.

Your own posting is more flawed in it's argument than the article.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/194/23429#23429

Pretty Good at Gettin' By 2003-11-03
Anonymous