Re: [SC-L] Bugs and flaws

2006-02-01 Thread Crispin Cowan
Gary McGraw wrote: If the WMF vulnerability teaches us anything, it teaches us that we need to pay more attention to flaws. The flaw in question seems to be validate inputs, i.e. don't just trust network input (esp. from an untrusted source) to be well-formed. Of special importance to the

Re: [SC-L] Bugs and flaws

2006-02-01 Thread Steven M. Bellovin
In message [EMAIL PROTECTED], Crispin Cowan writes: Unfortunately, this safety feature is nearly useless, because if you take an infected whatever.doc file, and just *rename* it to whatever.rtf and send it, then MS Word will cheerfully open the file for you when you double click on the

Re: [SC-L] Bugs and flaws

2006-02-01 Thread John Steven
I'm not sure there's any value in discussing this minutia further, but here goes: 1) Crispin, I think you've nailed one thing. The continuum from: Architecture -- Design -- Low-level Design -- (to) Implementation is a blurry one, and certainly slippery as you move from 'left' to 'right'. But,

Re: [SC-L] Bugs and flaws

2006-02-01 Thread Crispin Cowan
John Steven wrote: I'm not sure there's any value in discussing this minutia further, but here goes: We'll let the moderator decide that :) 1) Crispin, I think you've nailed one thing. The continuum from: Architecture -- Design -- Low-level Design -- (to) Implementation is a blurry

Re: [SC-L] Bugs and flaws

2006-02-01 Thread Gunnar Peterson
Hi John, Which of the following more aptly characterizes the problem?: IMPL. BUG: Insufficient security-constraint existed on the admin Servlet in the app's deployment descriptor. ARCH. FLAW: No fa├žade component gated privileged functionality -alternatively- ARCH. FLAW: Privileged