Yes. That’s a given. As long as it’s in the back end, there isn’t a problem. My concern is if someone out there still isn’t checking it at all. There must be some inept devs out there if SQL injection attacks on the web are still a thing. That’s the kind of thing you’d hear about way back in 2004. Hell I know to defend against it and I don’t even do web development.
Should be, maybe. The reality is that you can spend extra time making the program work, but if it works and you want to spend extra hours on it for whatever reason, it’s usually considered a waste of time.
Until they get hacked and it costs incredible amounts of money, that is.
Smart programmers do all the things they need to do before they get everything working. As soon as it works they get pushed to work on something else.
Security should be built in from the ground up. It’s not an afterthought. If you’re not doing that, you’re not doing it right. I get that there are time constraints but you should factor that in when giving your estimates.
Yes. That’s a given. As long as it’s in the back end, there isn’t a problem. My concern is if someone out there still isn’t checking it at all. There must be some inept devs out there if SQL injection attacks on the web are still a thing. That’s the kind of thing you’d hear about way back in 2004. Hell I know to defend against it and I don’t even do web development.
You’d be surprised! The developers at my company are terrible at their jobs and do the bare minimum lol
Securing the application should be considered the bare minimum.
Should be, but we all know delivery is lol
SecuringRunning the application should be considered the bare minimum.Should be, maybe. The reality is that you can spend extra time making the program work, but if it works and you want to spend extra hours on it for whatever reason, it’s usually considered a waste of time.
Until they get hacked and it costs incredible amounts of money, that is.
Smart programmers do all the things they need to do before they get everything working. As soon as it works they get pushed to work on something else.
Security should be built in from the ground up. It’s not an afterthought. If you’re not doing that, you’re not doing it right. I get that there are time constraints but you should factor that in when giving your estimates.
Oh I agree. It’s just not always how it goes.