Gadi Evron wrote: > For argument sake, let's assume there are 100. > > How about campaigning for a secure coding chapter to be added to these > semester, erm, world-wide? > > Nothing is ever easy, but we have to start somewhere. I don't see why this > is a bad idea. Yes, it takes time. Yes, it will have a much bigger impact. > It is not a bad idea. But it clearly is not sufficient. Why are you assuming that it is not already being tried? The problem is that it is being tried with the usual degree of effectiveness, i.e. unevenly. Saying "lets try it" is redundant, because that is already going on, just not enough. To make it more, one would have to convince the people who are currently not doing it, or doing it badly, to do better, and they (by definition) are not listening.
Crispin -- Crispin Cowan, Ph.D. http://crispincowan.com/~crispin/ Director of Software Engineering, Novell http://novell.com Hack: adroit engineering solution to an unanticipated problem Hacker: one who is adroit at pounding round pegs into square holes _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php