Re: Perhaps developers should work offline
@AC You're either unwilling or unable to grasp basic concepts of how coding works in modern systems, and I don't get paid enough to teach you. So I'm out of this discussion now, and I'll just leave you with these wise words from Col. Nathan R Codemonkey, Senior Programmer, Guantanamo Software House, Cuba.
Senior programmer: I'll answer the question. You want answers?
Junior Programmer: I think I'm entitled to them.
Senior programmer: You want answers?!
Junior Programmer: I want the truth!
Senior programmer: You can't handle the truth!
Son, we live with software that has holes, and those holes have to be found and closed by men with serious skills. Who's gonna do it? You? You, Anonymous Coward? I have a greater responsibility than you can possibly fathom. You weep for the state of software security, and you curse those who spend their lives trying to harden it. You have that luxury. You have the luxury of not knowing what I know -- that software vulnerabilities, while tragic, are inevitable in complex software; and my existence, while grotesque and incomprehensible to you, makes it as safe as it can be.
You don't want the truth because deep down in places you don't talk about at parties, you WANT me scanning your code -- you NEED me scanning your code.
We use words like “Token,” “Fuzzing,” “Exploit.” We use these words as the backbone of a life spent in penetration testing. You use them as a punch line.
I have neither the time nor the inclination to explain myself to a man who downloads porn and watches cat videos under the blanket of the very protection that I provide and then questions the manner in which I provide it.
I would rather that you just said "thank you" and went on your way. Otherwise, I suggest you pick up a keyboard and stand to post. Either way, I don't give a DAMN what you think you're entitled to!