Yes, to follow up on this is that in (I will venture to say) most
organizations, working and getting work done is going to always trump
security. It does no good to have something secure if it doesn't
actually do anything anyone needs.
James Pulver
CLASSE Computer Group
Cornell University
On 12/10/2015 02:10 PM, Klaus Hartnegg wrote:
Am 10.12.2015 um 16:40 schrieb Eric Periard:
Security is not an option in your organization?
Nobody wants a secure computer. Your computers are not secure either.
Because computers are only secure if all cables are unplugged.
A computer which allows work to be done is always a compromise.
For example a computer center here until a few weeks ago told us that
SAP can only be reached via a Java applet. Good luck trying to talk
Juniper into rewriting the way to connect to that terminal server. This
left us with no choice.
If you make sure that Java in the browser is only active for the applets
on your intranet, then this is theoretically safe. Except that is is
not, because Java until recently could be tricked to run applets from
non-whitelisted domains. But even so there is still the ClickToRun
feature of Firefox.
If Mozilla decides that crashing is better than leaking memory, then
organizations can be forced to stay on the previous version. A perfectly
secure Firefox can cause people to switch to other less secure browsers.
_______________________________________________
Enterprise mailing list
[email protected]
https://mail.mozilla.org/listinfo/enterprise
To unsubscribe from this list, please visit
https://mail.mozilla.org/listinfo/enterprise or send an email to
[email protected] with a subject of "unsubscribe"
_______________________________________________
Enterprise mailing list
[email protected]
https://mail.mozilla.org/listinfo/enterprise
To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise
or send an email to [email protected] with a subject of
"unsubscribe"
