Re: Rather inevitable wasn't it ?
We had a customer who deployed, what was basically software intended for LAN use, directly on the internet.
We pointed this out and said it most definitely wasnt advisible.
Our recommendation was that he lock it away behind even basic HTTP password protection.
His response? "Oh yea, we're going to use SSL".
I'm fairly sure that, after a year, it was still exposed, SSL-less and no sign of any additional password protection.
Just a case of convenience over sense.
Biting the hand that feeds IT
