RE: [twuug] Wired News : Hackers Crack Into MS System

[Ethan <telmnstr@xxxxxxx>]

>  Something about this bothers me. If, say, someone were to crack our
> development servers at work and tamper with my code, it would be
> relatively easy (assuming I was aware of the crack, which MS is) to
> review all of the code changes made over X days or weeks. 

xdiff :-)

>  That's what revision control software is for. And considering that the
> coder will be familiar with at least their parts of the code, you could
> simply have everyone review their stuff, and then look for suspicious
> commits/changes to other, less active portions of the tree.

Its not that easy. I doubt they modified the crap, they just got a trophy.

>  I know the source to Windows is huge, but I can't believe they don't
> use some sort of versioning system (probably Visual SourceSafe,
> considering). That, and whoever is acting as the release engineer shoudl
> be familiar with changes and commits, since their ultimate responsibility
> is to track that sort of stuff anyway. It's not too hard to do a 'stack
> trace' of the last X number of builds to look for funkiness. 

I'm shure they use revision control software and project management
utilities. They are huge.

>  If not, well, they deserve to lose all that work anyway.
>  Jeff

Not really. I'm shure they have backups. What the PR people tell the
public and what really happened is two different things I'm shure.



-
--------------------------------------------------------------------------
* To unsubscribe from the TWUUG discussion list, either send e-mail to
-  twuug-request@twuug.org with the word "unsubscribe" by itself
-  in the body of the message or visit: 
-  http://www.twuug.org/lists/twuuglists.html