The Four Most Dangerous Security Myths
|
10-15-2005, 09:08 AM,
(This post was last modified: 10-15-2005, 05:56 PM by mandy.)
Post: #1
|
|||
|
|||
The Four Most Dangerous Security Myths
Quote:A lot of "accepted wisdom" is just flat-out wrong. If you've been told that patches always fix a security hole, or that SSL is all you need to be safe, read on. full article: http://www.informationweek.com/story/sho...=172300043&pgno=1 |
|||
10-15-2005, 06:07 PM,
Post: #2
|
|||
|
|||
Re: The Four Most Dangerous Security Myths
Quote:1. Patches always fix the security hole:... Windows patches are proof that patching doesn't fix security problems 100% of the time. "You need to find the holes before the bad guys do," he says. "Most people think defensively, but you have to think offensively. It's jujitsu." duh! trying to find them first is the hard part |
|||
10-16-2005, 12:10 AM,
Post: #3
|
|||
|
|||
Re: The Four Most Dangerous Security Myths
[quote author=rose link=topic=820.msg3127#msg3127 date=1129399676]
Quote:1. Patches always fix the security hole:... Windows patches are proof that patching doesn't fix security problems 100% of the time. [/quote] Gentoo patches/upgrades that cause Apache to stop working for users who didn't read the change notes before installing them are proof that.... :twistedevil: Quote:1. Patches always fix the security hole:... They fix known security holes but the odds are a new one will be found the day after you install the patch. The second you connect a server or computer to a network/the Internet you've opened up a potential security hole that's just waiting to be explored by evil outsiders. :twistedevil: Quote:2. SSL is secure:... Until you encounter a phisher using an SSL certificate and spoofing a well known web site and discover that the lock icon showing on your browser didn't mean that you were safe when you gave out your credit card info. : Quote:3. Theoretical vulnerabilities don't pose a danger:... Expect to be hacked at some point in the near future if you believe you're safe from hackers
"Well, Jay was so giddy that someone named Jay was involved with this site we posted our first non-eBay listing in 3 years here at Lunarbid (we tried two items at Yahoo once upon a time, they bombed)" -Marie posting in a LunarBid thread at OTWA in 2005 wins the award for 'most moronic reason ever given for choosing a venue"
"thanks twat u must have nothing better 2 do. do u talk to all your members like that. will not be recomending your site. best way to put it is TULIPTOOLS.COM IS REALLY SHIT. DONT JOIN." -pubescent owner of rinky dink off2auction.com in 2011 |
|||
« Next Oldest | Next Newest »
|
Users browsing this thread: 2 Guest(s)