Journal GillBates0's Journal: Yet another checklist
I picked on in a /. comment today:
Your post involves a
( ) technical (x) social ( ) moral
comment about computer security. This comment is incorrect. Here's why it's incorrect:
( ) You have no idea how system security works
(x) You assume that popularity is inversely proportional to security
( ) You make improper use of technical language
(x) You assume that part of the problem is the entire problem
(x) You fail to account for different security models.
Specifically, your comment fails to consider that:
( ) Security flaws can be exploited in an automated manner
(x) Not all bugs are security flaws
( ) Security flaws can be exploited manually
( ) Legions of script kiddies use point-and-drool tools
( ) Dedicated black-hats can cause damage using home-designed tools
(x) Privilege separation prevents many problems
( ) Some security flaws are strictly theoretical
(x) Different systems are inherently more or less vulnerable to exploits
( ) Security flaws can be independently discovered
( ) Security flaw discovery and exploit does not require source code
(x) Not all security flaws are of the same severity
(x) Running as root is almost always a problem, no matter the system
( ) Not all viruses are transmitted by e-mail
( ) Not all viruses are self-propagating
( ) Not all security flaws are buffer overruns
( ) Stupid people do stupid things
and the following general objections may also apply:
( ) Full disclosure completely informs affected system administrators
( ) Exploit code has legitimate uses
(x) Security is by design, not accident
( ) Security isn't magic, and thinking of it that way is harmful
( ) Hackers/crackers aren't evil magicians who can get around anything
( ) Security starts with the user
( ) Why should we trust the government?
( ) Why should we trust you?
Furthermore, this is what I think about you:
(x) Nice idea, but it's been said before and that doesn't make it any more true.
( ) That's an incredibly stupid idea, and you're stupid for suggesting it.
( ) You're a moron, and I'm surprised you have enough brain cells to continue breathing.
Your post involves a
( ) technical (x) social ( ) moral
comment about computer security. This comment is incorrect. Here's why it's incorrect:
( ) You have no idea how system security works
(x) You assume that popularity is inversely proportional to security
( ) You make improper use of technical language
(x) You assume that part of the problem is the entire problem
(x) You fail to account for different security models.
Specifically, your comment fails to consider that:
( ) Security flaws can be exploited in an automated manner
(x) Not all bugs are security flaws
( ) Security flaws can be exploited manually
( ) Legions of script kiddies use point-and-drool tools
( ) Dedicated black-hats can cause damage using home-designed tools
(x) Privilege separation prevents many problems
( ) Some security flaws are strictly theoretical
(x) Different systems are inherently more or less vulnerable to exploits
( ) Security flaws can be independently discovered
( ) Security flaw discovery and exploit does not require source code
(x) Not all security flaws are of the same severity
(x) Running as root is almost always a problem, no matter the system
( ) Not all viruses are transmitted by e-mail
( ) Not all viruses are self-propagating
( ) Not all security flaws are buffer overruns
( ) Stupid people do stupid things
and the following general objections may also apply:
( ) Full disclosure completely informs affected system administrators
( ) Exploit code has legitimate uses
(x) Security is by design, not accident
( ) Security isn't magic, and thinking of it that way is harmful
( ) Hackers/crackers aren't evil magicians who can get around anything
( ) Security starts with the user
( ) Why should we trust the government?
( ) Why should we trust you?
Furthermore, this is what I think about you:
(x) Nice idea, but it's been said before and that doesn't make it any more true.
( ) That's an incredibly stupid idea, and you're stupid for suggesting it.
( ) You're a moron, and I'm surprised you have enough brain cells to continue breathing.
Yet another checklist More Login
Yet another checklist
Slashdot Top Deals