[Info-vax] DECserver/LAT across DECnet areas?

terry-...@glaver.org terry-groups at glaver.org
Mon Jul 24 11:46:16 EDT 2023 

On Monday, July 24, 2023 at 9:58:52 AM UTC-4, Johnny Billquist wrote:
> Have you ever heard of "all eggs in one basket"? It's generally not a 
> good idea. When a security issue appears, *everything* is then 
> voulnerable. Having multiple solutions, implementations and technologies 
> carries a cost, but it also reduces risks in one way. Yes, you might 
> have a higher chance of having an exploit, but the consequences are much 
> less damaging. And you will always have exploits. And thus, any argument 
> about the number of exploits have to acknowledge that first of all, 
> there will be exlpoits. So, talking about limiting the damages is the 
> more reasonable/interesting thing to do. 
> 
> Not to mention the overhead of running it all over http. I know that 
> there have even been implementations of IP over http... 

And of course there are "standards" bodies that decree that certain
things are now forbidden, or behave differently and unpredictably.
>From my blog article "Is no crypto always better than bad crypto?",
found here: https://www.glaver.org/blog/?p=853 I'll give one example:
"A certificate issued on December 31st, 2015 at 23:59:59 is treated 
differently than one issued one second later on January 1st, 2016 at 
00:00:00."

We can't forget that certificate lifetimes have become shorter and
shorter - you can't buy a SSL certificate with a longer expiration date
than 1 year + any time remaining on the existing certificate. I think the
only reason they haven't shortened it further is that once they get it
down to 180 days, there's pretty much no reason not to use Lets
Encrypt unless you're a bank or similar institution. I think the SSL
certificate vendors would complain that their customer base would
leave if they did that.

If Microsoft can forget to renew their SSL certificate:
https://www.theregister.com/2022/06/10/microsoft_insider_certificate
most people using SSL will commit the same blunder at least once.

> It's turtles all the way down. 

I was thinking of another word that starts with "tur" and ends in "s".

More information about the Info-vax mailing list