> -----Original Message----- > From: Eric Roberts [mailto:[EMAIL PROTECTED] > Sent: Sunday, March 04, 2007 7:38 PM > To: CF-Talk > Subject: RE: Why does IE s*(k... let me count the ways. > > So that is better than none at all how?
No security is better than the illusion of security when none exists in almost every case. When you have the illusion of security it's more difficult to get funding for real security. It's more difficult to convince management that there's a problem. Maybe I'm just grumpy because I had to spend a good chunk of last week trying to convince a group of middle-managers that their system wasn't secure. All they included was URL referrer checking - and they felt (very strongly it turns out) that the measure was "good enough" to protect social security data and HIPPA-covered information. When you have no security and no "obfuscation" for non-technical folks to confuse with security it's much easier to get funding and convince people that there's a need to address. At least that's been my experience. Jim Davis ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 The most significant release in over 10 years. Upgrade & see new features. http://www.adobe.com/products/coldfusion Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:271465 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
