[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RISKS: Princeton discovers another Netscape security flaw

To: [email protected], [email protected] (Steven Weller)
Subject: Re: RISKS: Princeton discovers another Netscape security flaw
From: [email protected] (Lucky Green)
Date: Sun, 24 Mar 1996 22:43:03 -0800
Cc: [email protected]
Sender: [email protected]

At 23:48 3/24/96, Perry E. Metzger wrote:
> When you build something large and complex, and
>you require that the entire thing work for you to be secure, there are
>just too many failure modes.

That just about sums it up.

Chisel these in granite:

o Thou shall not execute untrusted code. Java or no Java.
o Privileges that an user doesn't have can't be abused.
o The only safe firewall is a non-networked computer.
o A feature that doesn't exist won't introduce security holes.

Yes, I know that there is a balance between functionality and security.
Where to draw the line depends on the application.

-- Lucky Green <mailto:[email protected]>
   PGP encrypted mail preferred.

Prev by Date: Re: LIST OF SHAME VOLUNTEERS
Next by Date: Re: LIST OF SHAME VOLUNTEERS
Prev by thread: Re: RISKS: Princeton discovers another Netscape security flaw
Next by thread: Re: RISKS: Princeton discovers another Netscape security flaw
Index(es):
- Date
- Thread