On Tue, Sep 4, 2012 at 8:02 AM, David Gerard dgerard@gmail.com wrote:
The essential problem is that people can't get stuff through the gatekeepers, so they come up with a workaround. Noting that the workaround is insecure and saying "just don't do that" doesn't solve the original need and won't help security. It's not clear to me what will, but the gatekeeping is an obvious start.
The problem with creating a new system that has no gatekeepers is that it encourages people who have no business writing code to end up doing so.
Lowering bars, making it easy to jump into the shallow end, giving people feedback so they can improve--these are all good things we can and should do.
-Chad