[Info-vax] BridgeWorks
Dave Froble
davef at tsoft-inc.com
Mon Jul 22 13:39:15 EDT 2024
On 7/22/2024 8:12 AM, Simon Clubley wrote:
> On 2024-07-21, Dave Froble <davef at tsoft-inc.com> wrote:
>> On 7/20/2024 11:31 PM, Lawrence D'Oliveiro wrote:
>>> On Sat, 20 Jul 2024 16:58:09 -0400, Arne Vajhøj wrote:
>>>
>>>> Interesting. I wonder if it is a retro thing or there are still VB6
>>>> applications out there that need to be maintained.
>>>
>>> Would you entrust mission-critical business functions to obsolete,
>>> unsupported software?
>>>
>>
>> Would you entrust mission-critical business functions to today's supported
>> software? ???CloudStrike???
>>
>> Don't understand why anyone would question something that has been running
>> successfully for years with no problems ...
>>
>
> TLS 1.0 was running just fine for many years before advances declared
> it to be obsolete and insecure.
>
> Same for MD5 and SHA-1.
>
> Same for Intel processors until the side-channel attacks emerged.
>
> Any comments David ? :-)
>
> Simon.
>
Well, yeah, Simon ...
I would not consider SSL, TLS, MD5, Sha-1, and such applications. They are more
environment protection, the way I see it. And you are correct, some no longer
protect the environment for the real apps.
Please explain to me how an application, for example an inventory application
that tracks on hand product, would ever be involved in security? It is the
environment that must provide the security, and the apps the actual work.
Things get a bit grey when an application communicates outside the environment,
but even then, it is the available security that is used, not the apps.
So, your comments are not relevant to whether or not the apps written in say VB6
need support, at least from a security perspective.
--
David Froble Tel: 724-529-0450
Dave Froble Enterprises, Inc. E-Mail: davef at tsoft-inc.com
DFE Ultralights, Inc.
170 Grimplin Road
Vanderbilt, PA 15486
More information about the Info-vax
mailing list