BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] Good and Bad Crypto
- Subject: [Discuss] Good and Bad Crypto
- From: peabo at peabo.com (Peter (peabo) Olson)
- Date: Fri, 25 Apr 2014 00:32:46 -0400 (EDT)
- In-reply-to: <5359210B.1070005@gmail.com>
- References: <20140423174046.GP3247@dragontoe.org> <53580798.6040309@gmail.com> <li6zjjbyi3c.fsf@panix5.panix.com> <535813B2.5030401@gmail.com> <li6fvl3ye8a.fsf@panix5.panix.com> <53582B40.80200@gmail.com> <li67g6fyc39.fsf@panix5.panix.com> <5358547E.1060508@gmail.com> <li6eh0mq2vz.fsf@panix5.panix.com> <5359210B.1070005@gmail.com>
On April 24, 2014 at 10:34 AM Richard Pieri <richard.pieri at gmail.com> wrote: > Mike Small wrote: > > heartbeat requirement at all for the TCP case, but it's always a bug to > > take external untrusted data at its word in this way. > > I maintain that this isn't a bug; it's willful stupidity. The reason a bug happens is not relevant when the bug causes damage. > > Perhaps. There may be an economic argument why Open Source, or some > > parts of it, isn't getting enough attention from enough of the right > > people. I don't know. I only have trouble with the idea that having > > Most of the right people when it comes to crypto are identified by > security agencies very quickly, and then either recruited or constrained > before they pose any threat -- which is to say, before they can > contribute substantially to either open source or proprietary ventures. > Of those who remain, the ones who aren't good enough for the NSA and > similar agencies, most either end up working for big companies like > Microsoft and Google, because these are the only ones that can afford > their salaries, or start their own security-related companies. Phil Zimmerman, who was hounded for years legally and eventually prevailed. peabo
- References:
- [Discuss] Good and Bad Crypto
- From: invalid at pizzashack.org (Derek Martin)
- [Discuss] Good and Bad Crypto
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Good and Bad Crypto
- From: smallm at panix.com (Mike Small)
- [Discuss] Good and Bad Crypto
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Good and Bad Crypto
- From: smallm at panix.com (Mike Small)
- [Discuss] Good and Bad Crypto
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Good and Bad Crypto
- From: smallm at panix.com (Mike Small)
- [Discuss] Good and Bad Crypto
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Good and Bad Crypto
- From: smallm at panix.com (Mike Small)
- [Discuss] Good and Bad Crypto
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Good and Bad Crypto
- Prev by Date: [Discuss] Good and Bad Crypto
- Next by Date: [Discuss] Upgraded to Ubuntu 14.04...can't connect to wifi with rtl8723ae driver
- Previous by thread: [Discuss] Good and Bad Crypto
- Next by thread: [Discuss] Heartbleed and UDP
- Index(es):