Email or username:

Password:

Forgot your password?
Top-level
Matt Campbell

@danderson It seems to me that dismissing all technical solutions because the problem is social is itself a form of giving up because stopping 100% of badness is impossible. If the option of hijacking crypto code in the sshd process through an obscure dynamic linking feature and an underfunded library hadn't been an option, for example, would the attacker have gotten nearly as far as they did?

1 comment
Trent Waddington

@matt @danderson agreed. Everything needs to be done, not nothing. Understand the threat and adapt. Personal hobby horse: scan your binaries. Revng just went open source, look inside those blobs!

Go Up