The security of an application is not hidden in a trick in the code but the algorithm it is using. Being able to see the code (assuming it were bug free) should never reveal a bug in the security framework. Obfuscation is not security. On Fri, 12 Mar 2004 11:09:37 -0500 (EST) "Michael Long" <mlong@datalong.com> wrote:
Hi,
During a discussion with an application architect, while trouble shooting SQL Servers "security" behavior, he asked how an application can be more secure when anyone can view the security related code. I thought this was self evident, but I guess it is not. I was wondering how others would answer this question?
Thanks, Mike
_______________________________________________ Wlug mailing list Wlug@mail.wlug.org http://mail.wlug.org/mailman/listinfo/wlug