On Wed, Aug 07, 2024 at 10:11:08AM +0700, Max Nikulin wrote: Hi, Max,
Thanks for your quite extensive (and, as always, insightful) reply. Most of the points have been touched on in this long thread. The insecurity of the X protocol, etc. In my threat model, if I already have an application running under my own user ID, I call XKCD 1200 [1] on it. Any mitigation helps, of course, but I have to assume the worst has happened. [...] But for me, you expressed the core concern beautifully: > Educating people is quite expensive. ...that's what I'm about: I, as "people", don't want to be treated as a disposable resource. I don't want any of my colleagues, customers, providers, visitors, users... treated as a disposable resource. Call me weird for that :-) Cheers [1] https://xkcd.com/1200/ -- t
signature.asc
Description: PGP signature
