From Liquidmatrix:
There are some days (usually when I work from home) where I have a moment of pause and reflect on some of the pearls of wisdom I have gathered over the years. Here is a sampling of some of my favourites. Enjoy.
* “Of course it’s secure, we have a firewall.” (comment made by a Fortune 500 VP)
* “We have two factor authentication, a) username b) password”
* “We don’t need to harden internal servers, we have a firewall”
* ‘UDP is far more reliable than TCP” (a former CTO imparted that one)
* “No one can hack the application because it uses SSL”
* “Disable “view source” in the browser to secure the application”
* “Just disable the users telnet client” (comment made in relation to an internet facing ecommerce app)
* “Just fdisk the hard drive to wipe the data” (made prior to disposal)
* “I have a complicated SSID that people will not be able to guess” (indeed)
* “That’s not the way the application is supposed to work so, users will not see that behaviour.”
* “Cross Site Scripting? Just disable javascript.” (Sigh)
* “You can see that data because you are using a proxy. If you go directly to the web app it is secure.”
* “The storage tapes do not have to be encrypted because no one will have a device to read these tapes.”
* “We use base64 encryption.”
* “Oracle 8 is totally secure. There is no reason to upgrade.”
* “Yes, I know what a cross over cable looks like”
* “It’s 100% secure.”
No Comments Yet
No comments yet.
Comments RSS TrackBack Identifier URI
Leave a comment
