Thread: [Doubt] About DLL Injection

  1. 09-12-2013 #16
    grumpy
    grumpy is offline
    Registered User
    Join Date
    Jun 2005
    Posts
    6,815
    Quote Originally Posted by Barney McGrew View Post
    You gots to look on the bright side, if we all talk about security holes and exploit them, maybe that'll motivate people to write less crappy software. ^_^
    Not in practice, it won't. Such discussion tends to attract kiddies who are more interested in exploiting such things.

    If you want to motivate people to write less crappy software, discuss techniques to write good software and find constructive ways to motivate developers to use them.

    The basic problem is that exploiting security holes is a relatively easy task with highly visible satisfaction and payoff for the people inclined to exploit them. It is an activity that appeals to the less altruistic and more selfish people in the world, and has a low bar to entry. [There are exceptions to that statement, but you won't find many talented people who exploit security holes for altruistic reasons in the open on a forum like this].

    In contrast, writing good software is a technically challenging task that, if done well, does not give overt benefits or satisfaction for the developer. If their job is done right, it's just "what was expected". If they mess up in good faith, they get caned for it. That combination of being taken for granted if you do your job properly, but crucified whenever you make honest mistakes, is virtually guaranteed to demotivate people from doing a good job. It is easier to keep one's head below the parapet, do a mediocre job, and leave someone else to clean up the resultant mess.
    Right 98% of the time, and don't care about the other 3%.

    If I seem grumpy or unhelpful in reply to you, or tell you you need to demonstrate more effort before you can expect help, it is likely you deserve it. Suck it up, Buttercup, and read this, this, and this before posting again.
  2. 09-12-2013 #17
    Barney McGrew
    Barney McGrew is offline
    Stoned Witch Barney McGrew's Avatar
    Join Date
    Oct 2012
    Location
    astaylea
    Posts
    420
    You make it sound as if there are no developers who fix security holes in their programs because they get offended whenever people find them. ^_^

    But lots of programs take bug reports seriously and work toward fixing 'em. (I'd watch out for bug reports too 'cause they teach crackers how to exploit software.)

    EDIT: Well, not programs, but people developing programs.
    Last edited by Barney McGrew; 09-12-2013 at 09:59 PM.
  3. 09-13-2013 #18
    grumpy
    grumpy is offline
    Registered User
    Join Date
    Jun 2005
    Posts
    6,815
    Quote Originally Posted by Barney McGrew View Post
    You make it sound as if there are no developers who fix security holes in their programs because they get offended whenever people find them.
    I said no such thing. If that is your interpretation, you missed my point completely.
    Right 98% of the time, and don't care about the other 3%.

    If I seem grumpy or unhelpful in reply to you, or tell you you need to demonstrate more effort before you can expect help, it is likely you deserve it. Suck it up, Buttercup, and read this, this, and this before posting again.
  4. 09-13-2013 #19
    Elkvis
    Elkvis is offline
    Registered User
    Join Date
    Oct 2006
    Posts
    3,445
    I think it's time that we stop feeding this troll.
    What can this strange device be?
    When I touch it, it gives forth a sound
    It's got wires that vibrate and give music
    What can this thing be that I found?
  5. 09-13-2013 #20
    Barney McGrew
    Barney McGrew is offline
    Stoned Witch Barney McGrew's Avatar
    Join Date
    Oct 2012
    Location
    astaylea
    Posts
    420
    @Grumpy: I'm pretty sure your point was that developers aren't motivated to fix holes 'cause people treat them negatively when they find 'em, but if that were true I don't think they would.

    There's not really much to argue with that though. If people start exploiting vulnerable programs then the authors and users both have a pretty good motivation to fix them. More than they'd have if the bugs were kept secret, y'know?

    @Elkvis: Why not find a Norwegian goat and ask it to throw me in a stream of water? =)
  6. 09-13-2013 #21
    laserlight
    laserlight is offline
    C++ Witch laserlight's Avatar
    Join Date
    Oct 2003
    Location
    Singapore
    Posts
    28,413
    This thread seems to be living past its expiry date.

    *thread closed*
    Quote Originally Posted by Bjarne Stroustrup (2000-10-14)
    I get maybe two dozen requests for help with some sort of programming or design problem every day. Most have more sense than to send me hundreds of lines of code. If they do, I ask them to find the smallest example that exhibits the problem and send me that. Mostly, they then find the error themselves. "Finding the smallest program that demonstrates the error" is a powerful debugging tool.
    Look up a C++ Reference and learn How To Ask Questions The Smart Way
« Previous Thread | Next Thread »
Popular pages Recent additions subscribe to a feed

Similar Threads

  1. DLL Injection
    By Cr4zYPT in forum C Programming
    Replies: 7
    Last Post: 09-09-2011, 11:43 AM
  2. dll injection
    By mundaneblur in forum Windows Programming
    Replies: 0
    Last Post: 09-16-2010, 12:58 AM
  3. DLL Injection
    By n1mda in forum C Programming
    Replies: 25
    Last Post: 02-13-2008, 10:11 PM
  4. DLL Injection
    By Lionel in forum Windows Programming
    Replies: 1
    Last Post: 07-24-2005, 05:18 PM

Tags for this Thread