<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Firewall Wizards: Re: Extreme Hacking

Re: Extreme Hacking

From: Marcus J. Ranum <mjr_at_nfr.net>
Date: Wed, 07 Jul 1999 11:40:14 -0400

Ge' Weijers wrote:
>On the other hand: those who need to develop security-related code,
>protocols etc. do need to have an awareness of common exploits.

Yes, and no. They need to know classes of bugs to avoid, and
categories of common mistakes. For example, if you're developing
security critical code you need to know what buffer overruns are
and how to prevent them -- you do not need an exploit script that
tickles a bug in the latest version of BIND.

mjr.

--
Marcus J. Ranum, CEO, Network Flight Recorder, Inc.
work - http://www.nfr.net
home - http://www.clark.net/pub/mjr

Received on Jul 12 1999

This message: [ Message body ]
Next message: Joseph S D Yao: "Re: TCP port 7 traffic from DoubleClick"
Previous message: Crispin Cowan: "Vulnerability Escrow (was: Extreme Hacking)"
In reply to: Ge' Weijers: "Re: Extreme Hacking"
Next in thread: Ge' Weijers: "Re: Extreme Hacking"
Reply: Ge' Weijers: "Re: Extreme Hacking"
Reply: Darren Reed: "Re: Extreme Hacking"
Reply: Crispin Cowan: "Re: Extreme Hacking"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]