[Techtalk] Theory vs. practice

Julie jockgrrl at austin.rr.com
Mon Jan 14 03:10:55 EST 2002

Jenn Vesperman wrote:
> On Mon, 2002-01-14 at 18:12, Julie wrote:
> > A lot of what's out there today in terms of "practice" has very
> > little to do with formal security theory and more to do with really
> > bad coding.  For example, most of the security problems we see are
> > coding errors -- buffer overflows, parameter checking, software
> > races, and the like.
> Yes, but programmers aren't being taught how to avoid these coding
> errors, or what errors to avoid.

I agree 100% with what you just wrote.
Julianne Frances Haugh             Life is either a daring adventure
jockgrrl at austin.rr.com                 or nothing at all.
					    -- Helen Keller

More information about the Techtalk mailing list