Call: +44 (0)1904 557620 Call
Blog

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Esteban Martínez Fayó has a fantastic black hat presentation on SQL Injection"] [Next entry: "10gR2 the CONNECT role has finally been sanitized"]

Database Vendors Shouldn't Kill the Messenger



I saw a good news article on eWeek earlier in the week and made a note to have a look. The article is written by Charles Garry and is titled "Database Vendors Shouldn't Kill the Messenger". The article starts with this opinion:

"Opinion: Hackers are a bigger problem than indiscreet security researchers, and vendors should focus on protecting their databases, not their reputations."

This is quite an interesting article with some good comments on the recent Mary Ann Davidson article that lambasted security researchers.