dav_s
User
Baby Cheetah
| Posts: 9 |   |
Karma: 0
|
Gadfly zeroes in on Oracle bugs (CNET) - 2007/03/07 07:46
This thread discusses the Content article: Gadfly zeroes in on Oracle bugs (CNET)
Lately you have especially been looking closely at Oracle's databases. Is there a specific reason that you're looking at Oracle more than Microsoft or IBM?
Litchfield: Yes. SQL Server 2005 is secure. (Microsoft has) solved the problem. Oracle is in the process of solving that problem. IBM, I have looked at DB2 and Informix and sent them a bunch of bugs, probably about 50, ranging from buffer overflows to privilege escalation issues. But IBM's security response was mature. In the most recent past, the Oracle security response was not so mature. They have been combative, as opposed to: "This guy is just trying to make our products more secure." But it is getting better. Oracle is beginning to understand that we're fighting on the same side, just from different perspectives.
nice 
David
Post edited by: dav_s, at: 2007/03/07 07:47
|
