On Tue, 21 Oct 2003 22:04:12 -0700 James Sparenberg <[EMAIL PROTECTED]> uttered:
> > The largest advantage most users have is that the true experts at > doing things like this... won't because they have to much to lose. That's why I hope you see my point, this guy is applying altogether too much hype to an issue that he understands less than *I* do ;-) <snip> > > > > What currently existing or planned chat software would allow a > > rootkit to come down the pipe and be executed? If the user accepts a > > file, makes it executable, and runs it, there's nothing that can be > > done anyway. Education is the key, not more paranoia. > > Current, I know of none. In the past kicq (or any other icq client) > had this bug. (Hey my icq number has 5 digits..... been around it for > a while.) However one of the less advertised reason for the recent > switch by yahoo and MSN on their protocols is just this reason. Which > is why older clients are blocked. But an MSN client would be of little threat in this regard running on a Linux platform, no? No one should be connecting to MSN anyway, unless they absolutely have to, for whatever reason. > > > > > > > > > > To further claim that Linux needs to go the route of the Trusted > > > > Computing initiative...well, yer right, that's not funny, that's > > > > scary. > > > > > > And inline with a harsh reality. Linux is not secure. It can be > > > made secure. But in and of itself it isn't. Security comes not > > > from what the OS is. But on whether or not the tools exist to > > > make that OS secure. Take a look at NSA linux if you want to see > > > some really neat stuff about security. > > > > It's certainly secure enough to avoid going down the path of tying > > software to hardware. The Trusted Computing Initiative is not to be > > trusted at all. To tell me what software I'm allowed to run on my > > hardware because some l33t h4x0r knows how to patch a running kernel > > is pure paranoia, and it would be the death of open source. > > The most restrictive music in the world is blues. just 12 notes. But > look at all of the music that's been made from it (Jazz, Gospel, Rock, > Rap etc etc etc.) Security isn't a restriction ... well ok I'll admit > that to most "experts" thats what security is. Security is the > outgrowth of Liberty (ask Benjamin Franklin) If all of the pieces > where in concert then you could run anything you want. No sweat. > Most restrictions come from having to block or otherwise thwart an > insecure system. Okay, valid point, but remember who this "Trusted Computing Platform" idea is coming from, and Benny would be spinning in his grave at what MS has planned for their version, I would wager. I have some hope for the future, of course; whatever crap these morons at MS and their cohorts throw out, it is guaranteed not to work, we can take that much for granted. -- HaywireMac ++ ICQ # 279518458 Registered Linux user #282046 Homepage: www.orderinchaos.org ++++++++++++++++++++++++++++++++++++++++++ Mandrake HowTo's & More: http://twiki.mdklinuxfaq.org ++++++++++++++++++++++++++++++++++++++++++ FORTUNE'S RULES TO LIVE BY: #2 Never goose a wolverine.
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
