Reply to post: Hard of Hardening

It's 2020 so not only is your mouse config tool a Node.JS Electron app, it's also pwnable by an evil webpage

Anonymous Coward
Unhappy

Hard of Hardening

> “Presumably Kensington didn’t add authentication because they didn’t expect anything to try to talk to the server other than their own, trusted UI.”

Developer: There's the proof of concept working... [and goes on to demo the functionality]

Product owner: That's great, we'll GM on Friday.

Developer: But there's been no volume testing, compatibility testing, nor security hardening?

Product owner: That's great, we'll GM on Friday.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon