Of course, picture 2 scenarios: 1) your application is unsecure, but it only cost you $5000 to develop it 2) your app is locked down, but the extra time to develop made the final cost $10,000
Now let's say that in both situations the client was going to pay $20,000, even if they knew that the app was insecure. As much as I like quality, to quote the great philosopher, Sean Combs, "it's all about the Benjamins baby". :- ) Microsoft has no incentive to make secure products (if they wanted to, with the resources at their disposal, they could make the most secure products on Earth). The same people who jump on the "MS=bad" bandwagon are the same people who buy MS products. (Perhaps .NET will change this - short term subscriptions, as opposed to lifetime liscenses, could be more of a market catalyst) --- Billy Cravens ----- Original Message ----- From: "Costas Piliotis" <[EMAIL PROTECTED]> To: "CF-Talk" <[EMAIL PROTECTED]> Sent: Friday, December 07, 2001 6:34 PM Subject: RE: Hi > Right. How many developers does microsoft have that it can allocate to > breaking into its software. How many hackers are there worldwide? I'll bet > I'm not the first to admit that I've left "features" in my code as well. > Sometimes, clients have a way of finding them that I never thought of. > > > -----Original Message----- > From: Dave Watts [mailto:[EMAIL PROTECTED]] > Sent: Friday, December 07, 2001 3:04 PM > To: CF-Talk > Subject: RE: Hi > > > > If you were developing a ColdFusion Application that would be > > used by thousands worldwide, and you had pockets as deep as > > Microsoft, how likely would it be that the application could > > be hacked in dozens of different ways? How tough would it be > > to spend a couple of million to have a team of hackers go at > > it, BEFORE you release it? Better yet, release a hacker beta, > > and hand out wads of cash to whoever discovers holes. They > > haven't made it a priority. Expedient release is the priority. > > That's right - expedient release is certainly high on their priority list. > That's how you get those deep pockets, you know. > > Dave Watts, CTO, Fig Leaf Software > http://www.figleaf.com/ > voice: (202) 797-5496 > fax: (202) 797-5444 > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Your ad could be here. Monies from ads go to support these lists and provide more resources for the community. http://www.fusionauthority.com/ads.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
