rss article Kaminsky Offers Injection Antidote

Kaminsky Offers Injection Antidote
ancientribe passes along this excerpt from DarkReading.com: "Life's too short to defend broken code. That's the reason renowned researcher Dan Kaminsky says he came up with a brand-new way to prevent pervasive SQL injection, cross-site scripting, and other injection-type flaws in software — a framework that lets developers continue to write code the way they always have, but with a tool that helps prevent them from inadvertently leaving these flaws in their apps. The tool, which he released today for input from the development and security community, basically takes the security responsibility off the shoulders of developers. Putting the onus on them hasn't worked well thus far, he says. Kaminsky's new tool is part of his new startup, Recursive Ventures."

I have been saying that developers are lazy for a long time. It's not meant in a negative way, just truth for your average developer. The blue screen of death and system bomb are great examples of this, most of them were caused by lazy developers not writing proper memory management into their apps, so it would step on the toes of other apps and freak a system out. Which lead to protected memory.

Need coffee!

I had typed this last night, then didn't post it. Luckily, it was still in my iPhone's clipboard.


Kaitlyn does not feel well. She can't sleep, has been laying restlessly in our bed since 9. She has finally stopped squirming. At one point she fell off our bed. Alexis had to
go sleep on the couch just so she get a couple hours sleep. I've stayed up reading and making sure she doesn't fall out of the bed again. --
Bryan Kitchman

 Certified Trainer
 Certified System Administrator
 Certified Xsan 2 Administrator
 Certified Media Administrator

Work: 954-474-1010
Mobile: 954-464-9009
Fax: 954-474-1810
Email: Bryan@Kitchman.com
URL: https://www.kitchman.com