Agreed. I didn't mean to imply that because exploitable code is difficult to sus out, we shouldn't do due diligence in designing things with that in mind in the first place. I don't think Novell has ever been hacked into from the outside. It was written ground up with security, especially network security in mind. My point was that because spotting vulnerabilities in existing code is really REALLY REALLY etc... difficult, both for the hacker and the developer, we can never take the stance that, "Now we have found all the problems".
Bob S > On May 25, 2017, at 02:38 , Mark Waddingham via use-livecode > <use-livecode@lists.runrev.com> wrote: > > The reality is that whilst exploiting a vulnerability in general is REALLY > HARD (seriously, when I say REALLY HARD, I mean REALLY REALLY REALLY HARD and > this is why you only tend to see exploits in things which have a very large > reward for making that exploit - hackers have to consider ROI too!) - all > they need is a vulnerability in the first place. _______________________________________________ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
