Email or username:

Password:

Forgot your password?
All posts Matthew's posts Post Back to profile
Matthew Garrett

nation state actor maintenance of an open source project may introduce a lot of backdoors, but it also helps a lot of PRs get merged, so, it;s impossible to say if its bad or not,

31 March at 6:29 | Open on nondeterministic.computer
9 comments
mcc

@mjg59 I guess this is what it takes to get government to fund basic infrastructure

31 March at 6:42 | Open on mastodon.social
Matt Palmer

@mcc @mjg59 you misspelt "enact laws to make open source illegal, or at least bureaucratically infeasible".

31 March at 6:50 | Open on infosec.exchange
mcc

@womble I assume they could do both. They could fund the open source development that contains their backdoors and also effectively outlaw the open source they didn't personally fund

31 March at 6:57 | Open on mastodon.social
Matt Palmer

@mcc ooooooooooooooooooooh, *now* I see what you did there. Derp on me.

31 March at 7:17 | Open on infosec.exchange
Tero Hänninen

@mjg59 Just make sure your blue team has Postgres admins in it and you'll be fine (and as a bonus, any login that takes longer than 0.5 seconds will be investigated)

31 March at 6:56 | Open on ohai.social
DELETED

@mjg59 Unfortunately this is based on information we don't have as regular citizens. Meaning we don't know the benefits vs the damage from us (the West) inserting backdoors in various software projects

31 March at 7:21 | Open on mastodon.social
DELETED

@mjg59 Intuitively because of our reliance on technology and the fact that the West is supposed to protect civil liberties I think it is much more damage than any tactical benefit. So we should not insert backdoors and instead try to make our systems as secure as possible.

31 March at 7:26 | Open on mastodon.social
Nevkontakte

@mjg59@nondeterministic.computer it’s like encryption backdoors, only the good nation states are allowed to add or use them. It’s fine.

31 March at 12:41 | Open on m.nevkontakte.com
Paul Novarese
Go Up