Thursday, October 14, 2010

For you to succeed, I must fail.

I know that the ideal outcome of a web application vulnerability assessment is that the hacker finds nothing, and reports that the site is very secure.

But that doesn't keep me from feeling crappy when I can't find anything wrong.


1 comment:

Fletch said...

In my defense, they cheated. This is by no means a custom-developed app, it's all sql reporting server cobbled together with some ASP. Seriously, I can count the number of interactive fields on two hands.

I don't even know why they bothered to ask.