Originally Posted by
raehl311
Testing isn't the (only) problem.
The problem is the design is horrible, period. Even if they rolled it out and it worked exactly as it's been designed to, the following things would still be true:
....
These are just plain bad design decisions. These bad decisions were made before any of the software was written. Someone had to come up with them and someone had to sign off on them.
The fact that that happened indicates absolute complete incompetence on the part of the parties responsible.
For the IT experts out there, I have two questions:
How likely is it that the design decisions on this cluster of a security enhancement were all signed off on during the Smisek regime?
How long and how much effort is needed to fix this mess?