I agree that it is a publicity stunt. But adding security as an afterthought in this case would mean adding it after some hacker had published an exploit/vuln to a list and there was already bad publicity. It wouldn't help to say "You can't break this!", then have it broken and fixed as an afterthought. I think it just seems that they have done their homework, and made a solid product.
Andrew Blevins -----Original Message----- From: leon [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 20, 2001 6:39 AM To: [EMAIL PROTECTED] Subject: Ellison: Oracle Database is 'Unbreakable' (fwd) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I think it is a publicity stunt. Nothing like taunting the hacking / security community to get some free security work done for them so they don't have to do it themselves. I mean, why would they spend money on research and development of security when that totally cuts into their bottom line and they can it for free and add security as an afterthought. Anyone else agree or disagree? All responses to list please. Cheers, Leon - - -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Saturday, November 17, 2001 12:12 PM To: [EMAIL PROTECTED] Subject: Ellison: Oracle Database is 'Unbreakable' (fwd) - - ---------- Forwarded message ---------- Date: Fri, 16 Nov 2001 11:21:19 -0700 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Ellison: Oracle Database is 'Unbreakable' http://www.varbusiness.com/components/Nl/Insider/article.asp?ArticleID =31368 [ snip ] Ellison also said hackers and cybercriminals can't break into the database because of its enhanced security and stability. He said he was warned not to call Oracle 9i unbreakable because it would attract hackers eager to break into Oracle databases, but despite increased attacks recently, all attempts have failed so far, Ellison said. "I'm not inviting hackers, but so far, with more than 1,000 attacks a day, we're still running," Ellison said. "Our very first customer was the CIA. Our second customer was the National Security Agency." [ snip ] "What we're proposing is you keep your Microsoft Outlook, we'll make it unbreakable," Ellison said. "And unbreakable means you can't break it and you can't break in." [ snip ] More at http://www.oracle.com/features/events/index.html?ljecomdex.html Sounds like a challenge to me. I think you can download evaluation copies of Oracle products at http://otn.oracle.com/software/content.html - - -- Elias Levy SecurityFocus http://www.securityfocus.com/ Si vis pacem, para bellum - -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com> iQA+AwUBO/pq5dqAgf0xoaEuEQLlMgCYhdpLZNWSQ+wCGhGKhzB/Elfe2wCdGLAS fadt/iAuyCw5ucwFLn843Xw= =phbJ - -----END PGP SIGNATURE----- -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com> iQA/AwUBO/prA9qAgf0xoaEuEQLqxwCeK5cJZgNyW/5snZsTbCWC5lf1RE8AoPmp pjwsrqepUSpaIDKr7W1jx5w3 =nViG -----END PGP SIGNATURE-----
