Argueing over the internet…
Yeah, yeah - I’ve been busy… haven’t had time to update this blog… since forever. I write when I have something to say - and right now, I have something to say. I am involved in a few select forums - mostly technical ones that have relevance to my job and/or hobbies. I like discussing things - especially when I have key-insight into the matter. I like debating about stuff I know little about, but for me debating is different from discussing… in a weird sort of way, I guess. What irks me is stupid people… especially people that argue stupidly.
I participated in a debate concerning security in one of the programs I use at work. The person at the other side of the discussion says something about the security improving in the newest version of it. I dissagree (mostly because I’m right) giving an example (very loosely about how to breach the security - no specifics only how much you need to do it). We’re talking ‘All you need is this, which you will almost always have easy access to… the rest is cake if you know what you’re doing’. From the persons responses, I can clearly see that she doesn’t a) understand the problem - and b) would never be able to do any damage from my instructions. She then continues to ramble on about how I’m ‘a threat to the security be providing information to tinker with the program’.
Now comes the nagging problem. I cannot describe in detail what the problem is - since then I’d be doing exactly what she’s accusing me of. It is a huge problem in my oppinion - and yes, it has been reported to the supplier of the program with a *shrug*-attitude in response. I cannot stand people going ‘Yeah, the security is GREAT!’ if it isn’t - especially people that should realize the problem just from the few instructions I gave. If there is a risk - tell it, so people can a) relate to it and b) protect themselves.
Let’s say I found out that whenever I use my microwave oven, I get burns if I place my hands too near the temperature-dial. I then proceed to tell the supplier - he says ‘It isn’t a problem, noone ever places their hands that close to the dial’. Would you have me say ‘Oh yeah, that probably isn’t a problem then’? No, you’d have me go to the newspaper and get them to do something.
A smart guy once told me ’security through obscurity’ is worthless against people that know what they’re doing. After working with IT for a few years, I can relate. Problem is when suppliers aren’t acting responsibly… no missing limbs? We don’t care. And the problem is the sheep-consultants that doesn’t know how stuff works! (and just pass on the information that is on the box).
Yes, I could have waited for a bug-fix from the supplier (it will never come - their strategy doesn’t readily support a solution and I have this far waited 6 months). I could have just went ‘Oh yeah, the security is great!’ … or I could have just ignored it… why didn’t I choose the last one? I would have been much less irritated now… So, I guess the lesson here is: ‘Argueing over the internet will give you little satisfaction, no money and very much irritation’.