If a piece of software (or any engineering product) is designed properly and flexible enough to easily fix with attacks, then actually, product and attacker form a symbiotic relationship where the attacker actually helps the product head to impermeability.
This is true of most things that get hacked (remember when DirectTV had pirated boxes all over the place where one can purchase on craigslist or where a weekend intermittent hacker can easily get instructions on a website? DirectTV got more ingenious playing the cat and mouse game with hackers with the result of DirectTV now having a more secure system. The same with Game Console discs being copied. Try and see how easy it is to copy and have a playable Playstation 3 Game (where designers responded to pirating by now embedding chips on the BluRay disc)). The key to the whole situation is if the product is designed well to respond. Having seen to much php spaghetti mess in my career, I think Django and Python are well designed for such things. On Mon, Nov 16, 2009 at 11:39 PM, andreas schmid <a.schmi...@gmail.com>wrote: > hi mike, > > sry i dont want to be unkind but could you please turn the mail delivery > confirmation off when you write to a list?! > > thx > > Mike Ramirez wrote: > > On Monday 16 November 2009 20:12:57 Kenneth Gonsalves wrote: > > > >> anyway, in pitching for django (in particular), python and postgresql in > >> general, I put safe code as number one in the list. And I personally am > >> confident (after seeing the work done in the last 5 years in django, > python > >> and postgresql) that this will remain. Holes will appear - but I have a > >> feeling they will be few and far between and patched fast too. This is > >> what I tell people. > >> > >> > > > > Agreed all the way across. > > > > One of the reasons I use django is because it's hard to shoot yourself in > the > > foot and by making sure the lower level apis is where most of the > important > > security features we all want live, and makes customizing our own special > ones > > easy. Python, well it's the love of the language, postgresql cause of > the > > features it has, has had them a lot longer than mysql and a nicer memory > > footprint. > > > > And the latter part of your statement is exactly why we all think that > open > > source software is more secure than propietary software and swear by it. > > > > Mike > > > > -- > > You received this message because you are subscribed to the Google Groups > "Django users" group. > To post to this group, send email to django-us...@googlegroups.com. > To unsubscribe from this group, send email to > django-users+unsubscr...@googlegroups.com<django-users%2bunsubscr...@googlegroups.com> > . > For more options, visit this group at > http://groups.google.com/group/django-users?hl=. > > > -- You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-us...@googlegroups.com. To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/django-users?hl=.
