Do Software Engineers Encourage Bad Security Practices?
Apr 29, 2011, 08:04 (1 Talkback[s])
(Other stories by Jamie Adams)
[ Thanks to Jamie
Adams for this link. ]
"Software engineers sometimes enable or even encourage bad
security practices. You might be saying, "How dare he say that!"
It's not the technology that we've chosen or developed but rather
those convenient features which continue to enable system
administrators to do bad things.
"For example, electronic mail (email) is probably the primary
means of notifying system administrators of problems or job
completion. These emails might be notifying the system
administrator that a backup job is complete, a system is down, or a
system must be patched.
"Many vendor services such as a subscription to the Red Hat®
Network will help system administrators manage their systems by
sending a list of systems and the packages which need to be patched
due to vulnerabilities."