Comments on: The New Journey of The Software Professional

By: Dmitry Vostokov

Dmitry Vostokov — Fri, 29 Oct 2010 23:33:22 +0000

Thank you all for encouraging comments!
Dmitry

By: Jamie Faye Fenton

Jamie Faye Fenton — Fri, 29 Oct 2010 22:27:06 +0000

Software Support => Software Security

It is a logical progression of sorts. A really well implemented operating system should make support issues much less rampant, as well as making security issues much less problematic.

A security hole is taking advantage of a bug — if bugs can’t have unexpected consequences (like handing something root access, or creating an opprotunity to tell a lie), then the system is fundamentally more secure.

One gentleman with an extraordinary insight into security issues is Mark M. Miller, currently of Google. I have learned more from him than anybody else. One of his sayings that I cherish is:
“Never prohibit what you can’t prevent”. MarkM was and is a real fan of the “capability security model”, which I strongly recommend you learn about (if you don’t already know about it).

My other guru-level saint in this field is Bruce Schneier , who has a different take than MarkM does - which is to make sure you focus on the real threats rather than the theoretical ones, and that you don’t panic.

So will you be shifting more into forensics now?

– Jamie F.

By: jduck

jduck — Fri, 29 Oct 2010 17:16:40 +0000

Nice. If you have any questions I’m willing to help you

By: Knyghte

Knyghte — Fri, 29 Oct 2010 16:36:55 +0000

Congratulations, Dmitry! I wish you the best on this new voyage; please stay with your positive and cool attitude, the IT security environment is highly competitive, in part it’s a meritocracy, there’s a frequent bad attitude towards the software development and highly inflated egos. It has its very good aspects, but I see what I’ve described everyday.

Don’t you let people change you!

Cheers!