On 1 July 2013 05:20, Adam Back <a...@cypherspace.org> wrote: > The remaining claimed problems are then pidgin itself having bugs, nothing > on OTR. So if you want to argue for an interpreted language chat client, > go > for it.
If libpurple/pidgin itself has bugs, that compromises OTR. If an attacker gets in through a window or your sliding door, he's still in your house. And libpurple is full of bugs. That's the easy, go-to answer for this question. http://web.nvd.nist.gov/view/vuln/search-results?query=libpurple&search_type=all&cves=on -tom -- Too many emails? Unsubscribe, change to digest, or change password by emailing moderator at compa...@stanford.edu or changing your settings at https://mailman.stanford.edu/mailman/listinfo/liberationtech