1 |
On Wednesday 20 August 2008 22:31:30 RB wrote: |
2 |
> On Wed, Aug 20, 2008 at 12:14 PM, Jan Klod <janklodvan@×××××.com> wrote: |
3 |
> <snip rambling flame> |
4 |
No problem, we can cut it. |
5 |
|
6 |
> I'm not going to address each of the fallacies I see in your |
7 |
> statements, but you have an exceedingly idealistic view of software |
8 |
> development and particular OS' perceived security. [Insert project |
9 |
> here] may have a slogan, but the developers are still human and thus |
10 |
> still make mistakes and are inherently lazy. Short of being powered |
11 |
> by unicorn farts, there is no way any reasonably complex system can |
12 |
> approach that ideal. |
13 |
[sorry, as you see, writing what I don't know much about] |
14 |
In this light I was assuming, that file server is much less complex than it |
15 |
is. Give you my word to remember this when I write my next code :) |
16 |
|
17 |
> |
18 |
> In regard to your philosophy of updates, do you build a wall and not |
19 |
> defend it? Do you plant a garden and not water it? In the same |
20 |
> light, no system can be "permanently" secured. Safes are rated by the |
21 |
> amount of time it would take a dedicated, skilled cracker to open it; |
22 |
> none are ever deemed uncrackable. If you want more time, you purchase |
23 |
> [or build] one that better matches your needs. System security is no |
24 |
> different. |
25 |
Complexity matter again... Theoretically.. is it possible to enumerate all the |
26 |
possible scenarios for a file server? (or, I might have wrote - all of its |
27 |
states) Oh, sure, it has finite amount of memory :) |
28 |
Human problem. |
29 |
Is easy to say "security", hard to give an action for all the possibilities |
30 |
(right action by our judgement)... |
31 |
|
32 |
I started this as a "flame", but the rest might go out of scope of this list |
33 |
and send me to theoretical computer science. |
34 |
|
35 |
Javier Martínez: |
36 |
"control the execution of perl an python (between |
37 |
others) scripts (in the way of perl blablabla.pl, which does not need |
38 |
execution rights). You under this two frameworks you can do it. Can |
39 |
you do this under OpenBSD ;)" |
40 |
|
41 |
Thanks, just you put me on my way, if I really need a reliable system, that I |
42 |
can get NOW AND HERE :) |