Reply to post: Re: Bury your head in the sand and it will all go away

Stop the music! Booby-trapped song carjacked vehicles – security prof

Phil O'Sophical Silver badge

Re: Bury your head in the sand and it will all go away

They thought that they were so smart that the criminals would never be able to hack the O/Ss or networks.

No, it just never occurred to them that anyone would want to do so.

I meet this every day, trying to persuade programmers to write secure code:

"But why would anybody want to hack this?"

"To show that they can."

"That's silly, I don't need to protect against that."

or

"There's a race condition between creating that file and setting the protection on it."

"Oh, but no-one would put the effort into getting into that window, it's tiny."

People are, by and large, too nice and too honest. They concentrate on the clever features, and simply never think of how or why a malicious user would try and misuse the code to do something it wasn't designed for.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon