On Sun, 4 Aug 2024 12:38:00 -0700
Kent Borg wrote:
> Rich Pieri wrote:
>
> > First, the original quote is, "[t]he worst enemy of security is
> > complexity."
> Okay.
>
> And I am quoting Peter Gutmann, circa now. I like his version better.
Yes, well, it seems to me that you still aren't get
On 2024-08-04 15:38, Kent Borg wrote:
On 8/4/24 11:07, Daniel M Gessel wrote:
people will try to isolate trusted networks from the untrusted
outside world;
And I assert that it is usually a bad design to pretend that "trusted
networks" are worthy of trust. That's not paranoid enough.
Don't
On 8/4/24 11:07, Daniel M Gessel wrote:
people will try to isolate trusted networks from the untrusted outside
world;
And I assert that it is usually a bad design to pretend that "trusted
networks" are worthy of trust. That's not paranoid enough.
any such scheme is called a "firewall".
B
On Sun, 4 Aug 2024 09:45:06 -0700
Kent Borg wrote:
Security is not a state. It's an iterative process.
I originally wrote a lot of tearing down of straw-man assertions like
firewalls failing open (they don't: they fail closed so there is no
access in or out and therefore there is no damage). But
Securing systems imposes overhead of various kinds, so people will try
to isolate trusted networks from the untrusted outside world; any such
scheme is called a "firewall".
Firewalls seem like a good thing.
___
Discuss mailing list
Discuss@driftwood.b
On 8/3/24 19:05, Bill Bogstad wrote:
What you are basically saying is that we need to write software that
has essentially 0 bugs.
I'm saying we need to at least try.
The measure of success isn't that there are 0 bugs, it is that that we
are reducing the numbers of bugs. And at least eliminati
On Sat, 3 Aug 2024 22:05:49 -0400
Bill Bogstad wrote:
> I think it is basically because the industry has convinced itself
> that bugs are inevitable and there is no way to mitigate those bugs
> becoming security problems. Back in the 90s, I found security
> fascinating; but when I realized that
