Linked by Eugenia Loli on Wed 7th Dec 2005 22:55 UTC, submitted by LogError
Privacy, Security, Encryption Every security savvy professional lives with the daily fear of the "never expiring password" being exposed. It's the unspoken taboo, the wide open back door in every corporate network. But no-one ever acknowledges it or discusses it. All applications have got pre-defined passwords that never change. Which means developers, privileged users and hosting third party service providers will all have access to these passwords.
Permalink for comment 69931
To read all comments associated with this story, please click here.
article is fud
by Gadrel on Thu 8th Dec 2005 14:48 UTC
Gadrel
Member since:
2005-07-06

the jist is "developers have access to production data"

no shit? thats certainly a thought provoking idea. here's how to fix it

1) pay developers well
2) do treat them like shit or abuse them
3) select only people that you trust and know for developers
4) keep a professional atmosphere with developers, and expect the same from them

Reply Score: 1