[SC-L] market for training CISSPs how to code (Matt, Parsons)
AK
platsakos at gmail.com
Thu Mar 18 13:36:27 EDT 2010
Hi all,
We are drifting a bit away from my question but here is a forked question:
Who says so, in the context of web applications? I can see it (somewhat) from a "desktop" application perspective, but how is this relevant in web apps?
Cheers!
Date: Wed, 17 Mar 2010 20:17:05 -0500
From: ljknews <ljknews at mac.com>
To: sc-l at securecoding.org
Subject: Re: [SC-L] market for training CISSPs how to code (Matt
Parsons)
Message-ID: <p05200f26c7c72f5b96b7@[146.115.107.213]>
Content-Type: text/plain; charset=us-ascii
At 7:27 PM +0200 3/17/10, AK wrote:
> > Regarding training non-developers to write secure code, what are the
> > circumstances that a non-developer would create code that would
> > *require* security? I am assuming that system administrators know the
> > basics of their trade and scripting language of choice so security there
> > is taken care of
>
Scripting languages should not be used for security-sensitive
programs.
More information about the SC-L
mailing list