Forgot your password?
typodupeerror
Security IT

ZDNet Talks to Kevin Mitnick 19

Posted by ScuttleMonkey
from the people-you-wish-were-policy-makers dept.
An anonymous reader writes "Notorious hacker turned security consultant Kevin Mitnick touches on a myriad of issues ranging from law enforcement to Microsoft in a short interview with ZDNet. My favorite part is when he's asked if in his mind, Microsoft is a leader and the rest are still catching up. Mitnick answers: 'I am waiting for a case where a software maker gets sued for releasing buggy code, but they will probably cover their ass with the long license agreements that nobody ever reads.'"
This discussion has been archived. No new comments can be posted.

ZDNet Talks to Kevin Mitnick

Comments Filter:
  • Do you believe that the state of software security is better today than five or 10 years ago? Mitnick: No, though it depends on what software you are talking about and what the company has done. I can't make one statement for the whole industry. Take Microsoft, for example. I think their current code base is more secure than Windows NT was.
    I remember those days where all of these vulnerabilities were being found and Microsoft did squat...until people started attacking their own servers. Then hotfixes wer
  • Do you think if you were doing today what you did 10 years ago, would you be caught sooner? Mitnick: If I knew what I know now and I could use what I know now back then, no. But if they had the technology that exists today, and I was doing the exact thing I was doing, yes. Law enforcement's capabilities for tracking communications are much greater than years ago.

    Well that's fairly obvious since the FBI does recruit crackers/hackers that they catch. Now they've got a tool box filled with talented convert

  • by Anonymous Coward
    Am I alone in the opinion that Kevin Mitnick's opinion is worth less than a squirt of urine? The guy's a scumbag, stole from others, got caught, went to jail, and now he's... some kind of hero? Why don't you try and idolize someone deserving instead?
    • by lpcustom (579886) on Tuesday November 08, 2005 @09:37AM (#13978045)
      I wouldn't call him a scumbag. I also really don't care what his opinion is on sercurity is either. He's capitalizing on his name. In all honesty though, he deserves to be able to do that. He was used to set a precedent. That's all. They were tough on him because they had to be to get their point across. Somehow, that's made him look like a major player in the "hacker" society.
      One key point about Kevin's story though...He got caught. People seems to ignore the fact that there were plenty of "hackers" at that time and Kevin is the one that was caught. So how does that make him the best or even close to the best? That's like being in a marathon, walking behind everyone, and since you're the one the media can keep up with they are asking you how you stay so fit and healthy. Makes very little sense.
  • Well, if one can get sued for releasing a buggy code, everone programming for profit is
    going to be jailed. Seriously, software is sold 'as is', or you must pay a million for a
    simple text editor.
    • uh, if you can get sued for releasing buggy code, then how is making free software going to cover your costs?

      If people get used to the idea of suing if the software has bugs, you'll still get sued, even if your software is free.


      • You are confusing software that has bugs in it with buggy code. Mitnick is referring to gross negligence . In fact, if you RTFA you will find this quote:

        "Mitnick: Software is always going to have bugs because there are human beings behind it doing the development."

  • Why are there stories about a person, who's biggest fame is being arrested for computer crime?
  • I am waiting for a case where a software maker gets sued for releasing buggy code, but they will probably cover their ass with the long license agreements that nobody ever reads.'

    The Therac-25 [wikipedia.org] had flaws that killed people. Also read the IEEE article [vt.edu].
  • There is no "of" after "myriad". Just FYI.

    -bZj

Forty two.

Working...