-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 2012-06-13 12:30, Graham Anderson wrote:
On Wednesday 13 Jun 2012 15:21:12 Basil Chupin wrote:
Has someone been "asleep at the wheel", or am I missing the point about all this?
They have been fighting malware since... ever, and losing. Each time they release a new Windows version they boast of new security and antimalware features, than later fail or don't meet expectations. ...
This technology may prove to be both a blessing and a curse. On one hand you can reduce the attack vectors and make computer systems more secure; on the other hand consumers are now having to ask permission from technology corporations, and by extension the interests that pressure them (entertainment corporations, governments, intelligence services etc...) to use the hardware you already own.
Right.
Additionally, how can you trust the harware implementation to not have back doors[2] in it anyway? And do you really trust the certificate authority given that some of root CA's in SSL chains have already been giving out generic certificates for cash for the express purpose of man-in-the-middle attacks. Do you trust Verisign to never give their signing keys to the US Government or intelligence services? Do you trust them enough to assume that no other nation state such as China has not already compromised them and can appropriate the signing keys?
Right as well. But all that is irrelevant. The technology is here this cycle and we can not avoid it, so we need to run with it. - -- Cheers / Saludos, Carlos E. R. (from 11.4 x86_64 "Celadon" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/YdQMACgkQIvFNjefEBxqS/gCg2lPOJ4XcZj8vMbXzENPci/wa d9AAnAgb0N7iiNyiFME+K9yuiMzUEsSU =eGXX -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org