Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
Heh... I have a project that has been on AWS for a year of dev already. The main API it runs on? Also on AWS. The IoT features? Also on AWS.
Clients plan is to launch on Azure. -
Their audit can't have been anything other than a surface level check list of features - or maybe they misunderstood when their team said they used the windows audit tool (lol). The Windows XP code was "leaked" (probably by microsoft to force legacy upgrades) after 20 years and we still haven't audited even that version of windows - there's no reason to do so now. How can you audit proprietary black boxes? You can't. You can only audit the observable effects. Tell them that they are stupid to believe that a company's small development team is so smart that they've stumped all hackers in the world. Tell them that less eyes on a project is a proven net negative. Most of all, ask them if their security team gave them the idea that open source is more vulnerable - and if so, fire them.
-
antran22304y@comfycoding the fact that non tech companies still vastly use windows xp - 7 and outdated microsoft office just really show that these ppl actually don't give a shit about security, they just don't wanna use something they are not familiar with.
-
@comfycoding If you are a government or a company with >10,000 people you can get the Windows source code for auditing purposes + reproducible build verification.
But I somehow doubt the company is that large.
Related Rants
-
gururaju56*Now that's what I call a Hacker* MOTHER OF ALL AUTOMATIONS This seems a long post. but you will definitely ...
-
linuxxx70This guy at my last internship. A windows fanboy to the fucking max! He was saying how he'd never use anythi...
-
creedasaurus62Another dev on my team just got a new machine. Before he came in today I made two separate USB installers and ...
Stupid fucking client force us to deploy our nodejs codebase on windows server fucking 2016 because that the only version their security team has audited, and in their word: "open source oses like linux are more vulnerable because anyone can contribute????"
I fucking hate digital transformation projects with a passion because of stupid fucking client with their stupid fucking red tape problems
rant
linux
windows server
stupid clients
os