Re: OT: Smartcards and Physical Security

To: debian-devel@lists.debian.org
Subject: Re: OT: Smartcards and Physical Security
From: Manoj Srivastava <srivasta@debian.org>
Date: Sat, 06 Dec 2003 01:51:23 -0600
Message-id: <[🔎] 874qwe5qpw.fsf@glaurung.green-gryphon.com>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20031205104541.GA11399@comcast.net> (tb.31123.nospam@comcast.net's message of "Fri, 5 Dec 2003 02:45:41 -0800")
References: <[🔎] 20031203090316.GJ1068@donarmstrong.com> <[🔎] 20031203091639.GA11005@comcast.net> <[🔎] 20031203092450.GA11152@comcast.net> <[🔎] 20031203144548.GB29495@quetzlcoatl.dodds.net> <[🔎] 20031203145429.GA18778@comcast.net> <[🔎] 87llptapns.fsf@glaurung.green-gryphon.com> <[🔎] 20031203213451.GB9006@comcast.net> <[🔎] 87oeuo7a2u.fsf@glaurung.green-gryphon.com> <[🔎] 20031204195221.GA1456@comcast.net> <[🔎] 878ylr4m7t.fsf@glaurung.green-gryphon.com> <[🔎] 20031205104541.GA11399@comcast.net>

On Fri, 5 Dec 2003 02:45:41 -0800, Tom  <tb.31123.nospam@comcast.net> said: 

> Let me start by saying I basically understand your last point: it's
> not worth it because it won't work.

> On Fri, Dec 05, 2003 at 04:01:42AM -0600, Manoj Srivastava wrote:
>> who follow secire processes. Blowing 40k collectively is unlikely
>> to buy us much security.

> Like I said, it may be that it would be wasted money.  But you are
> switcing arguments here.  Originally you were bristling at the
> suggestion that you spend your own money.  Now you seem to be okay
> with that, but saying it would be wasteful because you basically
> don't trust smartcards.

	I am bristling at the idea of users demanding that volunteers
 are not doing enough, and need to spend money to provide better
 service. I was amused at the idea that you seemed to think that this
 was even remotely workable. I was flabbergasted that someone thought
 that mere gadetry actually brought security. I was heartened to think
 there there are still people on -devel misguided enough to believe
 that the Debian project has such a common hive mind that such a
 proposal would get past the belly laugh stage.

> I don't trust them either, but they are a layer.  Of course, they
> may be an absolutely useless layer, but they may not.  I think this
> is your true objection (to smartcards at all) and not to the
> suggestion of having your spend your own money to improve the
> project.  And that's an acceptable belief (although it *may* not be
> correct).  But if you want to explore other, free ways to improve
> Debian's security process (such as auditing one another's machines
> or some other way I can't think of), that's a good thing.  The point
> is: a failure occured.  Don't let it happen again.

	Drop the imperatives, and we shall get along a lot better.
 Better still, roll up your sleeves and make it happen, and
 you'll earn my respect, and my support.

>>
>> >> Let me see if I can point out the logical flaws in words with
>> >> few syllables.
>>
>> Take a bath? take a _bath_? What are we, back in grade school now?

> You're not seriously talking about taking pot shots are you?  Tit
> for tat.  But I withdraw the remark, I was thinking of the
> traditional image of the long-stringy-haired Unix hacker such as
> RMS.  I was picturing RMS
> -- I didn't mean anything else. :-)

	I was merely dumbfounded at the _quality_ of pot shots you
 were taking.  I am used to, umm, well, more, uggh. /mature/ pot shots
 being taken at people on this list. I have not heard that expression
 since the playing fields of my primary school.

	manoj
-- 
People who take cold baths never have rheumatism, but they have cold
baths.
Manoj Srivastava   <srivasta@debian.org>  <http://www.debian.org/%7Esrivasta/>
1024R/C7261095 print CB D9 F4 12 68 07 E4 05  CC 2D 27 12 1D F5 E8 6E
1024D/BF24424C print 4966 F272 D093 B493 410B  924B 21BA DABB BF24 424C

Reply to:

Follow-Ups:
- Re: OT: Smartcards and Physical Security
  - From: Tom <tb.31123.nospam@comcast.net>

References:
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Don Armstrong <don@donarmstrong.com>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Steve Langasek <vorlon@netexpress.net>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: OT: Smartcards and Physical Security
  - From: Manoj Srivastava <srivasta@debian.org>
- Re: OT: Smartcards and Physical Security
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: OT: Smartcards and Physical Security
  - From: Manoj Srivastava <srivasta@debian.org>
- Re: OT: Smartcards and Physical Security
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: OT: Smartcards and Physical Security
  - From: Manoj Srivastava <srivasta@debian.org>
- Re: OT: Smartcards and Physical Security
  - From: Tom <tb.31123.nospam@comcast.net>

Prev by Date: Re: exim4-config and exim4-base installed on systems with non-exim-MTA
Next by Date: Re: Building a distribution from source?
Previous by thread: Re: OT: Smartcards and Physical Security
Next by thread: Re: OT: Smartcards and Physical Security
Index(es):
- Date
- Thread