Click here to Skip to main content
15,867,453 members

Survey Results

Who is responsible for a software system's security?

Survey period: 24 Oct 2016 to 31 Oct 2016

A hardcoded password, a SQL injection, a system with a known issue, or not changing the default password. There can be lots of fingerprints on that knife.

OptionVotes% 
The user using the system51214.74
The person who recommended the use of the system1975.67
The person who installs the system45713.15
The developer who built the system80223.09
The person who decided on the default settings of the system50914.65
None of the above2,51572.39
Respondents were allowed to choose more than one answer; totals may not add up to 100%



 
GeneralJust to show how things can be complicated... Pin
Kornfeld Eliyahu Peter29-Oct-16 7:34
professionalKornfeld Eliyahu Peter29-Oct-16 7:34 
GeneralDesigner/Architect Missing Pin
cjb11026-Oct-16 20:41
cjb11026-Oct-16 20:41 
GeneralEveryone Pin
Marco Bertschi26-Oct-16 1:15
protectorMarco Bertschi26-Oct-16 1:15 
GeneralMissing Option Pin
Nathan Minier25-Oct-16 1:46
professionalNathan Minier25-Oct-16 1:46 
GeneralLegally? The owner of the product Pin
Eddy Vluggen25-Oct-16 1:09
professionalEddy Vluggen25-Oct-16 1:09 
GeneralRe: Legally? The owner of the product Pin
AlexCode25-Oct-16 21:17
professionalAlexCode25-Oct-16 21:17 
GeneralRe: Legally? The owner of the product Pin
Eddy Vluggen25-Oct-16 22:20
professionalEddy Vluggen25-Oct-16 22:20 
GeneralRe: Legally? The owner of the product Pin
AlexCode25-Oct-16 22:53
professionalAlexCode25-Oct-16 22:53 
GeneralRe: Legally? The owner of the product Pin
Eddy Vluggen25-Oct-16 23:05
professionalEddy Vluggen25-Oct-16 23:05 
GeneralShort answer - All Of The Above! PinPopular
Erik Burd24-Oct-16 7:25
professionalErik Burd24-Oct-16 7:25 
PraiseRe: Short answer - All Of The Above! Pin
Anurag Gandhi24-Oct-16 20:28
professionalAnurag Gandhi24-Oct-16 20:28 
GeneralRe: Short answer - All Of The Above! Pin
irneb24-Oct-16 20:41
irneb24-Oct-16 20:41 
GeneralRe: Short answer - All Of The Above! Pin
ISanti24-Oct-16 21:16
ISanti24-Oct-16 21:16 
GeneralRe: Short answer - All Of The Above! Pin
Karthik_Mahalingam9-Nov-16 17:48
professionalKarthik_Mahalingam9-Nov-16 17:48 
GeneralSecurity is "Job Nummer One" for everybody Pin
KarstenK24-Oct-16 6:47
mveKarstenK24-Oct-16 6:47 
GeneralDevelopers, developers, developers, (and only partly developers). Pin
OriginalGriff24-Oct-16 5:27
mveOriginalGriff24-Oct-16 5:27 
Balmer was foreseeing this very question!
Quote:
A hardcoded password, a SQL injection, a system with a known issue, or not changing the default password.

Hardcoded password: Developer. No one else can have responsibility for this.
SQL injection: Developer. We know the risks, or we shouldn't be doing the job. There's even cartoons explaining how to do SQL Injection, but some morons keep right on concatenating strings to form SQL commands. Nobody else is to blame here.
System with a known issue: Partly developers. I don't let stuff out without fixing the problems or making damn sure everyone knows the problem is there. And neither should you ... because it will be blamed on you when it bites someone, so all you can do is say "I told you all" to cover your ass.
Not changing the default password: This isn't all us: but we should "expire" default passwords immediately to make sure they are changed. We can help with this one... Good old admin/password | CommitStrip[^]
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...

GeneralRe: Developers, developers, developers, (and only partly developers). Pin
Nelek24-Oct-16 5:34
protectorNelek24-Oct-16 5:34 
GeneralRe: Developers, developers, developers, (and only partly developers). Pin
Philippe Mori24-Oct-16 6:49
Philippe Mori24-Oct-16 6:49 
GeneralRe: Developers, developers, developers, (and only partly developers). Pin
Nelek24-Oct-16 22:38
protectorNelek24-Oct-16 22:38 
GeneralRe: Developers, developers, developers, (and only partly developers). Pin
Slacker00725-Oct-16 23:04
professionalSlacker00725-Oct-16 23:04 
GeneralHackers Pin
snorkie24-Oct-16 4:30
professionalsnorkie24-Oct-16 4:30 
GeneralRe: Hackers Pin
Philippe Mori24-Oct-16 6:53
Philippe Mori24-Oct-16 6:53 
GeneralIf a user want some level of security, he should make it clear Pin
Philippe Mori24-Oct-16 2:53
Philippe Mori24-Oct-16 2:53 
GeneralRe: If a user want some level of security, he should make it clear Pin
Nelek24-Oct-16 5:21
protectorNelek24-Oct-16 5:21 
GeneralRe: If a user want some level of security, he should make it clear Pin
Philippe Mori24-Oct-16 6:43
Philippe Mori24-Oct-16 6:43 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Praise Praise    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.