Complexity is bad for security
I've mentioned before that I read Spaf's blog. He doesn't post too often, but he had a story last week that really resonated with me (and he referenced the story where the Mac+ beat a new AMD machine running XP in 53% of the tests they ran). I started programming on machines where 256KB was a lot of RAM and 256MB was a lot of whole lot of disk (yes, I have been doing this a while). Everyone likes all their new features, but that has resulted in bloated unmaintainable code and the size and complexity has a cost in security.
Honeypot-type fake service scripts/tools
I will be teaching next: Malware Reverse-Engineering Challenge - SANS New York City 2019
Jun 20th 2007
1 decade ago