--------
In message <20171210225326.gk5...@funkthat.com>, John-Mark Gurney writes:
>IMO, all security needs to be node-to-node.
There's nothing "IMO" about that.
The end-to-end principle became a bed-rock foundation of all rational
networking with "End to End Arguments in System Design" in 1981.
http://web.mit.edu/Saltzer/www/publications/endtoend/endtoend.pdf
The only realistic way for the FreeBSD project to implement end-to-end
trust, is HTTPS with a self-signed cert, distributed and verified
using the projects PGP-trust-mesh and strong social network.
Anything else is just pretend-security today.
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
p...@freebsd.org | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
_______________________________________________
freebsd-security@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
