Posted Mar 31, 2006 15:36 UTC (Fri) by hppnq
In reply to: Nonsense
Parent article: SQL injection attacks
So what are you suggesting then? That we should all write perfect code? Yes, that would solve the problem. Is it realistic? Not a chance in hell.
Most or all security implementations heavily depend on defining proper interfaces to resources and making sure that access to resources is only possible through these interfaces.
It follows quite simply that it's wise to start off with as little resources and interfaces as possible if you care about security.
to post comments)