[40630] in bugtraq
Re: Opinion: Complete failure of Oracle security response and utter
daemon@ATHENA.MIT.EDU (Rainer Duffner)
Thu Oct 6 14:49:47 2005
Message-ID: <43456B4E.7040702@ultra-secure.de>
Date: Thu, 06 Oct 2005 20:22:06 +0200
From: Rainer Duffner <rainer@ultra-secure.de>
MIME-Version: 1.0
To: David Litchfield <davidl@ngssoftware.com>, bugtraq@securityfocus.com
In-Reply-To: <01cf01c4f408$fa7fc610$0100a8c0@ngssoftware.com>
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 8bit
David Litchfield wrote:
[snip sad Oracle track "record" on security]
I must assume most of their code is written by some poor guys in a
sweatshop in Bangalore or Shanghai today.
And only those people can "fix" it, so if somebody finds a flaw, a
"request to fix" is sent to Bangalore and fulfilled in typical fashion...
You get the picure...
The Oracle-BMW America's Cup Team has a budget of 100 000 000 €, whereof
30 000 000 € are attributed to BMW.
That means 70 000 000 € spend by Larry for the silly Yacht - you, David,
could charge 100 000 per day and still deliver more value.
It's really a shame - but they'll only wake up when it's too late and
MSFT, PostgreSQL and MySQL have eaten their lunch.
Note: I don't care if it's Larry's personal money or Oracle's money -
for me, this is a purely fiscal separation. In the end, the money has
one source: Oracle.
cheers,
Rainer
