Y
Hacker News
new
|
ask
|
show
|
jobs
by
tptacek
5677 days ago
You see how we're converging on "just use proper input validation", which is the all-time least useful piece of advice in software security?
1 comments
Dylan16807
5677 days ago
Because input validation is hard to do. A rule to not pass input EVER (outside of parameters), even in a supposedly validated form, is something different.
link