Security: The root of the problem according to Marcus Ranum

ACM Queue has an interesting article written by Marcus on Security: The root of the problem.

In the article, Marcus explores why it is that we can't seem to produce secure, high quality code. From his perspective, one distressing aspect of software security is that we fundamentally don't seem to "get it." We keep trying to teach programmers how to write more secure code and we seem to be failing miserably at the task.

Can't say that I disagree with this. Think about it.... just how long have buffer overflows plagued our industry? How many times are people shown how to code defensively, only to have the practice thrown by the wayside during tight deadlines?

Anyways, the article is an interesting read. Enjoy!