[nycphp-talk] "The Web is broken and it's all your fault."
michael
lists at genoverly.net
Fri Sep 15 12:44:52 EDT 2006
On Fri, 15 Sep 2006 10:37:37 -0400
csnyder <chsnyder at gmail.com> wrote:
> I see where this appears to make a developer's job easier, but it
> doesn't do _anything_ to make web applications more secure, and could
> have a negative impact on security as beginning devs will assume that
> "the browser is checking all that, so I don't have to".
spot on.
> Wanna bet? The spammers are just as smart as you are, and probably
> have more time to think about the problem than you do. As long as
> you're the only person doing this, it will work, but as soon as
> obfuscation reaches a critical mass, the screen-scrapers will get a
> lot smarter overnight.
and again.
--
Michael
More information about the talk
mailing list