PDA

View Full Version : Bout time!



RoD
03-22-2003, 12:52 PM
Theres a school that has done this for years, not mentioned in the article, but its about time other schools started doing this.

http://www.pcworld.com/news/article/0,aid,109935,00.asp

Vber
03-22-2003, 01:10 PM
Nice thing, hope that more and more universities start doing this. But poor guys if they'll try to fix microsoft's security bugs...

alpha
03-23-2003, 12:05 AM
Originally posted by Vber
Nice thing, hope that more and more universities start doing this. But poor guys if they'll try to fix microsoft's security bugs...

Xei
03-23-2003, 12:54 AM
Heres what I dont get: "Students will be asked to Hack into Software, and fix any security bugs they find...". In what way will they be 'hacking software'? I'm pretty sure they can't disassemble the execution and fix any bugs they find. It is my opinion that IDG News Service, and PCWorld.com, are making a weak attempt at an article and probably don't understand one bit of what is going on.

BTW: I don't think that their use of 'hacking software' is even remotely appropriate for what they really mean. I think they should be writing 'Analyzing Software', as it makes much more sense.

RoD
03-23-2003, 08:52 AM
Good point xei, i hadnt really thought about that. Perhaps they mean security holes/bugs on something like mysql?

MethodMan
03-23-2003, 09:20 AM
Its a cool idea, but I can imagine that course being extremely hard.

Ethical hackers already exist and thats what that program will try to do, but you arent guaranteed that those students who take that course wont use the knowledge for hacking.

RoD
03-23-2003, 10:36 AM
I said the same thing about that security college that was doing this same thing, but when u broaden the view of that statement, you see that if they wanted to use it for negative means they could easily learn it anyway.

One way to avoid it, however, may be to teach specific or new methods, or otherwise get them on a specific habit, then should one use that habit in a major attack (not likely) it would be easier to narrow down who it may have been.

That is a horrible and un-likely example, but you see what i am getting at.

Vber
03-23-2003, 11:46 AM
Originally posted by RoD
Good point xei, i hadnt really thought about that. Perhaps they mean security holes/bugs on something like mysql?

Actually they mean more buffer underrun's or overflows of microsoft programs. :rolleyes: well, the media talks "hack" to impress people that don't know what the hell is programming, and think you can just enter in the source code and start editing it :) I think youre telling that they are "hacking" into open-source software, well it can be...