[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: How secure is software X?

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: How secure is software X?
From: Fabian Becker <neonomicus@xxxxxx>
Date: Fri, 12 May 2006 21:12:32 +0200

Dear David
in my opinion a software can either be secure or not secure. 
I think it's a bit like a woman cannot be "a bit pregnant".
But the protocol you are talking about can be used to tell the secure
from the insecure pieces of software. By applying a test for these rules
against systems, security will definitely be enhanced since software
brandmarked with "insecure" will simply loose it's value. 
Another question is how to verify that authors check their own software?
If they do not do it by now, why then? The only reason I could imagine
would be a raise in value by beeing able to say "My software is a tested
'secure' one".

My 2cts :)

Bye
Fabian Becker

Follow-Ups:
- Re: How secure is software X?
  - From: Matt . Carpenter
- Re: How secure is software X?
  - From: Crispin Cowan

References:
- How secure is software X?
  - From: David Litchfield

Prev by Date: Re: Re: Firefox 1.5.0.3 - DoS
Next by Date: PhpBB <= 2.0.20 Admin/Restore Database remote cmmnds xctn (works with admin sid)
Previous by thread: Re: How secure is software X?
Next by thread: Re: How secure is software X?
Index(es):
- Date
- Thread