The Bad Web Developer Fighting Back…..
August 3rd, 2007 Drazen Drazic Posted in Applications, Bad Developers, Bad Stuff, Dumb Security, WTF, Web Application Security, cyber crime |
I’m going to turn BorB into a soap opera for the next week or so. I’m going to report on our “discussions” with the web developer that was a leading player in:
Web Applications more secure these days? Not from where we stand!
Securing Web Applications……choose your developers carefully
It seems that the “developer” believes that they have done nothing wrong and continue to argue the point with the business that they are under no obligation to fix anything because what they have delivered is good. (Or so we are told). As a background, we have, until now, been kept out of this by the business who have assumed that the developer would be reasonable. Not the case…..thus, next week…we have been asked to meet with them. The shotgun is ready and the fish have been loaded into the barrel. Stay tuned.
August 6th, 2007 at 3:48 pm
Ask them about the noble art of bridge building. What does the bridge need to function and what conditions should it be expected to resist. Maybe it’s a standards, expectations and engagement/deliverables thing… but basically there’s a common body of evidence to ’support’ how a bridge should and shouldn’t be expected to perform. Just ask them in down in Missisippi!
August 6th, 2007 at 3:49 pm
Urk seems you can’t link through this UI.
http://blogs.securiteam.com/wp-content/hacked09mar06.jpg
D.
August 31st, 2007 at 11:24 pm
[...] If you haven’t seen this one, it’s worth following the links http://beastorbuddha.com/2007/08/03/the-bad-web-developer-fighting-back/ [...]