@dguido @jschauma I believe @fugueish added security to the curriculum at @Hackbright
-
-
-
@bcrypt@jschauma@fugueish@Hackbright That's great, I was hoping someone would respond with a counter-example.
End of conversation
New conversation -
-
-
-
- 1 more reply
New conversation -
-
-
@dguido Generally, Computer Science curricula at colleges/universities are no better.@wr0 and I gave a talk on this. http://mchow01.github.io/docs/beacon2015.pdf … -
-
@dguido@0xmchow@wr0 This was discussed at a@CircleCityCon talk yesterday. Prof claimed they teach sec. but students forget. -
@dguido@0xmchow@wr0@CircleCityCon Not sure if he treats security mistakes as errors and grades the code accordingly though. -
@send9@dguido@wr0@CircleCityCon Need evidence of how he assesses security. -
@0xmchow@dguido@wr0@CircleCityCon I'm curious too; if it was treated as a mistake like any other then maybe it'd reinforce that behavior
End of conversation
New conversation -
-
-
@dguido@0xmchow my wife is doing a Python one where they teach to salt and hash passwords in web apps@Hackbright -
@alexcpsec but they should be teaching the use of bcrypt or another password hash, salt + hash w/ regular hash functions isn't best practice -
@trixr4skids fair point.
End of conversation
New conversation -
-
-
@dguido@SushiDude I'm surprised it's that many, most usually cover security so badly it ends up negative (and thus CVE10k became a thing =)Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.