"I have a mind like a steel... uh... thingy." Patrick Logan's weblog.

Search This Blog

Monday, February 16, 2004

What makes a secure system?

As people debate the risks of the Windows code being stolen, and people debate the merits of open surce for making code more secure, I am wondering about a few things:

  • Writing code in a language that allows buffer overruns is not safe.
  • Writing office applications for a LAN that assumes all particpants are associates and then putting them on the Internet is not safe.
  • Writing operating systems that run every application with full user rights (or worse) is not safe.

Open source that is poorly designed is not safe. Closed source that is poorly designed and then released in the open is even less safe.

No comments:

Blog Archive

About Me

Portland, Oregon, United States
I'm usually writing from my favorite location on the planet, the pacific northwest of the u.s. I write for myself only and unless otherwise specified my posts here should not be taken as representing an official position of my employer. Contact me at my gee mail account, username patrickdlogan.