Re: HashKnownHosts

To: Wouter Verhelst <wouter@debian.org>
Cc: cjwatson@debian.org, matthew@debian.org, debian-devel@lists.debian.org
Subject: Re: HashKnownHosts
From: Florian Weimer <fw@deneb.enyo.de>
Date: Thu, 07 Jul 2005 15:53:07 +0200
Message-id: <[🔎] 87br5e3epo.fsf@deneb.enyo.de>
In-reply-to: <[🔎] 20050702205912.GB2549@rnb.grep.be> (Wouter Verhelst's message of "Sat, 2 Jul 2005 23:59:12 +0300")
References: <[🔎] 20050702091926.GA6989@wonderland.linux.it> <[🔎] 87zmt58ij8.fsf@deneb.enyo.de> <[🔎] 20050702174831.GA2549@rnb.grep.be> <[🔎] 87psu1xc5p.fsf@deneb.enyo.de> <[🔎] 20050702205912.GB2549@rnb.grep.be>

* Wouter Verhelst:

>> > -- and relying on other people's security to increase your own isn't
>> > pretty clever, actually.
>> 
>> Currently, it's the foundation of Internet security, I'm afraid.
>
> Well, then the 'foundation of Internet security' is very weak, I'm
> afraid.

It is.

> It's plain stupid to rely on someone else to get _your_ security
> working correctly. Think about it.

Well, if you care about DDoS attacks (whether at the IP packet or at
the email packet layer), there is basically no choice: you have to
rely on others.  Same for DNS and, especially, BGP.

Reply to:

References:
- HashKnownHosts
  - From: md@Linux.IT (Marco d'Itri)
- Re: HashKnownHosts
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: HashKnownHosts
  - From: Wouter Verhelst <wouter@debian.org>
- Re: HashKnownHosts
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: HashKnownHosts
  - From: Wouter Verhelst <wouter@debian.org>

Prev by Date: [OT] TeX font of Debian Logo?
Next by Date: Re: [OT] TeX font of Debian Logo?
Previous by thread: Re: HashKnownHosts
Next by thread: Re: HashKnownHosts
Index(es):
- Date
- Thread