[Info-vax] FTP FYI
Dave Froble
davef at tsoft-inc.com
Wed Nov 25 14:55:33 EST 2020
On 11/25/2020 11:24 AM, Stephen Hoffman wrote:
> On 2020-11-25 14:46:00 +0000, Dave Froble said:
>
>> Perhaps we should be a bit more focused on the issue?
>>
>> From what I was reading, the issue was catching data corruptions, not
>> security. Isn't it sort of silly to introduce security into another
>> issue? A checksum either works, or it doesn't. If it works, doesn't
>> that solve the potential issue?
>>
>> Or maybe I don't understand the issue ...
>
> OpenVMS is "the most secure operating system on the planet" 🤣, which
> means that vendor and third-party developers have thought about both
> non-malicious corruptions and about actively-malicious corruptions, right?
>
> Same applies for the default choice for random-number generation: use a
> cryptographically secure random number generator, absent very specific
> reasons to use a lesser generator. Or a lesser message digest hash.
>
> Or somewhat more succinctly, choose and use and offer and work toward
> secure defaults, absent specific reasons not to.
>
> We are all working toward actually living up to that "the most secure
> operating system on the planet" claim, right?
Actually, no.
Why, because security is so much more than an OS, or any other single thing.
I find it irritating when security is not the topic, that some feel that
they have to introduce it into a topic, where it is not an issue.
If it ain't broke, don't fix it ...
YMMV
--
David Froble Tel: 724-529-0450
Dave Froble Enterprises, Inc. E-Mail: davef at tsoft-inc.com
DFE Ultralights, Inc.
170 Grimplin Road
Vanderbilt, PA 15486
More information about the Info-vax
mailing list