Doublecheck?

Rokcet Scientist · Post by **Rokcet Scientist** » Tue Mar 18, 2008 12:08 am

"Hot on the heels of a recent hack in which 10,000 sites were compromised, researchers at McAfee have disclosed a new large-scale attack. They estimate that the attack has been active for roughly one week, and in that time frame has managed to place itself on roughly 200,000 web pages. Most of the infected pages are running the phpBB forum software, according to McAfee. The compromised pages are embedded with a Javascript file that links to the site hosting the attack."

http://www.itnews.com.au/News/72214,sec ... posed.aspx

Forum Monk · Post by **Forum Monk** » Tue Mar 18, 2008 6:36 am

The biggest security risk on any system is, and has always been, the end-user. Notice even this "sophisticated" hack still requires some gullible user to click.

One of the biggest problems in programming is figuring out how to supply sufficient user functionality while limiting his ability to do the unexpected or uncontrolled. Its not easy because the fix often results in a very dysfunctional application that users prefer not use. Its called "idiot proofing".

I say make the intentional creation of malicious software punishable by death.

Rokcet Scientist · Post by **Rokcet Scientist** » Tue Mar 18, 2008 7:23 am

Forum Monk wrote:
the fix often results in a very dysfunctional application that users prefer not use. Its called "idiot proofing".

No, it's called "Vista".

Post by **Minimalist** » Tue Mar 18, 2008 8:39 am

how to supply sufficient user functionality while limiting his ability to do the unexpected or uncontrolled.

Screw that, Monk. Could you work on the Presidency, instead?

Ishtar · Post by **Ishtar** » Tue Mar 18, 2008 9:51 am

Brilliant!