in reply to Re: Company hacks through my Perl's Website Security hole
in thread Company hacks through my Perl's Website Security hole

It is your fault for exposing a company's servers to a security breech through a hole in a script you wrote and placed on their server. Ignorance isn't bliss, nor is it an excuse.

I disagree. See my post for why.

The company's mistake was allowing a 'newbie' to place scripts on their site.

Yes

However, site policy was only the weapon.

Not in the sense that you mean. Good operating systems have the ability to limit badly behaving users so they don't take down the system. If I were handing out accounts to unknowns, I'd expect to have to harden the system appropriately. This is 'system policy' the way sysadmins think about it. You're probably referring to 'written policy', which is usually worth the paper it's printed on.

You put the bullet in it and handed it to the criminal to pull the trigger.

Please don't use violent metaphors, there are plenty of better ones to choose from. Like sexual metaphors. Gets the point across, but is a happier thought.

____________________
Jeremy
I didn't believe in evil until I dated it.

  • Comment on Re: Re: Company hacks through my Perl's Website Security hole

Replies are listed 'Best First'.
Re: Re: Re: Company hacks through my Perl's Website Security hole
by dimar (Curate) on May 21, 2004 at 16:42 UTC
    Please don't use violent metaphors, there are plenty of better ones to choose from. Like sexual metaphors. Gets the point across, but is a happier thought.

    *uproarious laughter* I prefer lite-beer metaphors. Less filling, Tastes great.