Re: [SC-L] How do we improve s/w developer awareness?

I agree. In general "classic" IT Security types are too focused on the problem and not focused enough on the solution side of the equation. Development is in many cases simply blissfully unaware of real security or thinks its someone else's job. In terms of dealing with developers and getting them

Re: [SC-L] How do we improve s/w developer awareness?

On the one hand, we're revisiting a topic that comes up like clockwork every 3 months or so. Someone rants that it's the developers' fault, then someone will inject a recommendation that tools can allow us to use trained monkeys, and then someone will bring out an obscure operating system or langu

Re: [SC-L] How do we improve s/w developer awareness?

At 10:26 AM -0500 11/11/04, Kenneth R. van Wyk wrote: >In my business travels, I spend quite a bit of time talking with Software >Developers as well as IT Security folks. One significant different that I've >found is that the IT Security folks, by and large, tend to pay a lot of >attention to

[SC-L] How do we improve s/w developer awareness?

Greetings, In my business travels, I spend quite a bit of time talking with Software Developers as well as IT Security folks. One significant different that I've found is that the IT Security folks, by and large, tend to pay a lot of attention to software vulnerability and attack information w

RE: [SC-L] Exploiting Software: How to Break Code

Sixteen reviews of the book can be found here: http://www.exploitingsoftware.com/press/ Also other trade press coverage. gem This electronic message transmission contains information that may be confidential or privile

RE: [SC-L] Exploiting Software: How to Break Code

You wrote... > Does anyone have any comments about this book? I have read some > reviews but it is on the site advertising the book for sale They > stated that this book is a must for anyone wanting to harden code > in programs, softwares and hardwares but then that could just be > a sales pitc

Re: [SC-L] Exploiting Software: How to Break Code

I think it's a great book. But then again, I wrote it. What do you want to know about it? gem -Original Message- From: Dana Epp [mailto:[EMAIL PROTECTED] Sent: Thu Nov 11 03:21:55 2004 To: Greenarrow 1; sc-l Subject:Re: [SC-L] Exploiting Software: How to Break Code Geo

Re: [SC-L] Exploiting Software: How to Break Code

George, I wrote a review about the book on my blog at: http://silverstr.ufies.org/blog/archives/000592.html Not sure if thats what you are looking for, but take a look if you are looking for a book review style view of it. - Dana - Original Message - From: "Greenarrow 1" <[EMAIL PROTEC