Oracle’s chief security officer said customers shouldn’t reverse-engineer Oracle source code for potential security flaws. Mary Ann Davidson wrote a strongly worded blog post, No, You Really Can’t. Oracle removed the post from its corporate site, but the Internet has a memory that refuses to be erased and copies of the missive remain in Googles Web cache and SecLists.org. Davidson also prodded customers to keep their own enterprise security house in order, before poking vendor software for potential weaknesses.”]
Source: https://www.csoonline.com/article/2970226/security-industry-reacts-to-oracles-cso-missive.html