|
|
|
|
|
|
by securityty2020
2362 days ago
|
|
|
Side point: +1 on not silly at all. Re: anything w/ security (esp how it works), if you don't know ASK. ASK. ASK. PLEASE ASK. Security is incredibly complex and minor/subtle mistakes can destroy companies and other potentially catastrophic consequences (especially to your employment.) If you're not sure about something, ASK. End-users are bad enough when it comes to security, but engineers should always feel empowered to "make sure" about all matters of security, large or small. Obviously it's best to to be familiar with best practices, but if you're not a security "expert" and you're unclear about something, ASK. There no dumb questions in security, just dumb practices. The dumbest thing of all is not asking your question because you think it's "obvious." tl;dr: ASK! |
|
|
For better or for worse, that's not the case. These days, security mistakes just end up in 2 years of free credit monitoring. Ironic case in point, Equifax.
I'm not saying you shouldn't take security seriously. But it's not fair to say that insecurity could destroy your company. Mainly, most end users just really don't care (or have a choice).