Quality assurance should be folded into Product Certification testing
offered by some of the vendors that lurk this list. But Product
Certification or BITS Testing can be very costly depending on the type of
testing that is conducted.
At 07:56 PM 6/7/2001 -0400, Zachary Uram wrote:
good point.
emphasis is on getting product to market not ensuring the most
rigorous testing metholodgies.
one gets the impresson security is an afterthough, at best, in
many companies.
On Thu, 7 Jun 2001 [EMAIL PROTECTED] wrote:
> >> Ahem, actually lack of quality assurance testing in software and
> hardware is the biggest threat out on the Internet today. According to
> some there hasn't been a new intrusion introduced into the wild except some
> type of exploit in code that the original programmers did not catch during
> their "extensive" QA process especially those folks located in the Pacific
> Northwest.
>
> At 04:30 PM 6/7/2001 -0400, Paul D. Robertson wrote:
> >On Thu, 7 Jun 2001, Zachary Uram wrote:
> >
> > > Hi Paul,
> > >
> > > So is DDoS attacks biggest security threat out there?
> >
> >No, most certainly intrusions are the biggest threat out there. Stopping
> >intrusions would naturally stop DDoS as well as other attacks.
> >
> > > It seems to be a big problem. Especially for e-commerce and data
> > > warehousing/management systems where uptime = $$.
> > > So no one has developed effective countermeasures against
> > > arbitrary DDoS attacks? I guess if there was a large enough
> > > concerted attack that some group could even overload an entire
> > > ISP or an Internet backbone? Do we need laws to give law
> > > enforcement/ISPs more power to solve this.
> >
> >For the most part, the attacks are already against the law- new laws don't
> >generally help for that. Making people upgrade and patch systems and
> >making software vendors produce more secure systems would be of much more
> >help. Reducing the social factors associated with people attacking
> >systems wouldn't be a bad thing either. So far not many people have stood
> >up to villify the bad guys- that needs to change.
> >
> >Paul
> >------------------------------------------------------------------------
-----
> >Paul D. Robertson "My statements in this message are personal opinions
> >[EMAIL PROTECTED] which may have no basis whatsoever in fact."
> >
> >-
> >[To unsubscribe, send mail to [EMAIL PROTECTED] with
> >"unsubscribe firewalls" in the body of the message.]
>
>
[EMAIL PROTECTED]
"Blessed are those who have not seen and yet have faith." - John 20:29
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
