[
Lists Home |
Date Index |
Thread Index
]
Many Unix experts sitting here dispute that.
They tell me Unix is the most easily hacked operating
system they've ever worked with. Spy Vs Spy.
Education about keeping a system secure is the
best answer. Security isn't a system state;
it is a system activity.
A recurring problem of security is sloppy code,
and this has little to do with the operating
system but a lot to do with how one uses the
WWW. The best security measure is to unhook
systems from the web. Short of that, one has
to face up to the responsibility of securing
the code. One of the articles I've read on the
topic lately bemoaned the 'cowboy coding culture'
and suggested this was a source of many of the
security problems. That is why I asked the
question: can one manage innovation in a
'do the simplest thing that can possibly work'
and create secure systems? Yes, but the 'manage'
part of that depends on a culture of tough
competence and practice coupled to strong
collaborative teams. As in theatre and
music, this doesn't mean only the best and
brightest and most talented, but the well
trained, well rehearsed, and trained to a
peak state of awareness. Chops count but
interaction counts more, and for that, as
the actors and musicians will tell you,
listening is everything.
len
From: Tim Bray [mailto:tbray@textuality.com]
Dare Obasanjo wrote:
>>>Can we 'do the simplest thing that will possibly work'
>>>and still produce a secure system.
>>
>>Sure; viz Unix.
>
> This is probably the funniest thing I've ever read on XML-DEV.
Really? Which part? The assertion that Unix is basically simpler than
the alternatives, or the assertion that it achieves a good level of
security? I happen to think that both are true.
|
