• himazawa@infosec.pub
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    1 year ago

    Most of the vulnerabilities in SAML are derived by the fact that XML it’s always a nightmare to parse… I wonder why people keep using it.

      • himazawa@infosec.pub
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        Yes, but usually “historical decisions” is an acronym for “we are not able to manage that because we designed our systems in the worst possible way”

        • Zeno_of_Citium@infosec.pub
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          … and those decisions are sometimes rooted in “we don’t have the people and/or money to spend on a new development in this module.”

          And everyone else is stuck either accepting that or spending the resources to ameliorate the situation. :/