I agree. In general "classic" IT Security types are too focused on the problem
and not focused enough on the solution side of the equation. Development is in
many cases simply blissfully unaware of real security or thinks its someone
else's job. In terms of dealing with developers and getting them
On the one hand, we're revisiting a topic that comes up like clockwork every
3 months or so. Someone rants that it's the developers' fault, then someone
will inject a recommendation that tools can allow us to use trained monkeys,
and then someone will bring out an obscure operating system or langu
At 10:26 AM -0500 11/11/04, Kenneth R. van Wyk wrote:
>In my business travels, I spend quite a bit of time talking with Software
>Developers as well as IT Security folks. One significant different that I've
>found is that the IT Security folks, by and large, tend to pay a lot of
>attention to
Greetings,
In my business travels, I spend quite a bit of time talking with Software
Developers as well as IT Security folks. One significant different that I've
found is that the IT Security folks, by and large, tend to pay a lot of
attention to software vulnerability and attack information w
Sixteen reviews of the book can be found here:
http://www.exploitingsoftware.com/press/
Also other trade press coverage.
gem
This electronic message transmission contains information that may be
confidential or privile
You wrote...
> Does anyone have any comments about this book? I have read some
> reviews but it is on the site advertising the book for sale They
> stated that this book is a must for anyone wanting to harden code
> in programs, softwares and hardwares but then that could just be
> a sales pitc
I think it's a great book. But then again, I wrote it. What do you want to
know about it?
gem
-Original Message-
From: Dana Epp [mailto:[EMAIL PROTECTED]
Sent: Thu Nov 11 03:21:55 2004
To: Greenarrow 1; sc-l
Subject:Re: [SC-L] Exploiting Software: How to Break Code
Geo
George,
I wrote a review about the book on my blog at:
http://silverstr.ufies.org/blog/archives/000592.html
Not sure if thats what you are looking for, but take a look if you are
looking for a book review style view of it.
- Dana
- Original Message -
From: "Greenarrow 1" <[EMAIL PROTEC