Reply to post: The world doesn't revolve around development (sometimes :P)

Pastebin: The remote backdoor server for the cheap and lazy

MissingSecurity
Devil

The world doesn't revolve around development (sometimes :P)

Firstly, to temper any dev who takes this the wrong way, blacklisting pastebin is sad state of affairs, HOWEVER, even the dev communities understand piss poor coding is a problem and that not enough diligence has been done for secure coding.

So looking at this from a InfoSec perspective, the question I would put to an organization is, Are you confident in the quality of your apps to prevent this type of attack, and if not, this is a risk, and it can be mitigated by blocking pastebin.

We all have ideas of how things should be, from context of addressing this problem now, if you're susceptible to attack from pastebin codes, I'd say reducing that risk immediately by block pastebin is not a bad idea.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2022